while running updates for whonix 15 in kvm on both workstation and gateway, a package updated called libjavascriptgtk, or something very similar. if someone knows a way to check the history i can get the exact name

is this normal? i always read about client side javascript on websites being a large attack vector, I’m guessing this library is for javascript for desktop applications?

If it is not a part of Whonix, is there a way I can see if it was installed as a dependencie of something else I installed?

Javascript can still be run regardless of what you’ve installed on your host if you’re using a modern browser. Having a javascript library installed won’t affect your security. Especially if you don’t use it.

You can run apt-cache rdepends (package) to check if it is a dependency.



https://www.whonix.org/wiki/FAQ#Non-Responsiveness_to_Concerns applies.

1 Like