Olaf Alders arranged to have Dave Cross come speak at a meeting of the Toronto Perl Mongers recently, and the video has now been posted on the TPRF channel. Here's the link to the Youtube video: link

Update: Made the URL into a link. And how long have you been visiting this site? Goof.

Years ago, a few people decided during the Perl Toolchain Summit (PTS) that it would be a good idea to join forces, ideas and knowledge and start a group to monitor vulnerabilities in the complete perl ecosystem form core to the smallest CPAN release. The goal was to follow legislation and CVE reports, and help authors in taking actions on not being vulnerable anymore.

That group has grown stable over the past years and is now known as CPANSec

The group has several focus areas, and one of them is channeling CVE vulnerability issues.

In that specific goal, a milestone has been reached:

CPANSec has just been authorized as a CVE Numbering Authority (CNA) for Perl and modules on CPAN 📣🎉🥳👌

The CPAN Security Group was authorized by the CVE Program as a CVE Numbering Authority (CNA) on Feb 25, 2025. A CNA assigns and manages CVE identifiers for projects in their scope.

Our scope is vulnerabilities in Perl and CPAN Modules (including End-of-Life Perl versions) found at perl.org, cpan.org or metacpan.org, excluding distributions of Perl or CPAN Modules maintained by third-party redistributors.

CVE is an international, community-based effort to identify, define and catalog publicly disclosed software vulnerabilities. To learn more about the CVE program, visit www.cve.org.

Report Vulnerability

Vulnerabilities should be reported according to the security policy of the affected project.

For more details, see our guide on how to Report a Security Issue in Perl and the CPAN ecosystem.

Contact Us

To request a CVE identifier, or to update a CVE we have issued, please send an email to cve-request@security.metacpan.org.

Subscribe to the cve-announce mailing list to be notified of new CVEs published by us.

For questions, disputes or other CNA related queries please use cna@security.metacpan.org. Disputes are handled according to the CNA rules.

Links

• CVE.org: CPAN Security Group added as CVE Numbering Authority (CNA)
• CVE.org: Partner Information - CPAN Security Group
• CVE.org: CVE Numbering Authority (CNA) Operational Rules
• Report Security Issue
• cve-announce mailing list
• CNA Disclosure Policy

• https://rt.cpan.org/Ticket/Display.html?id=97925 has been fixed: now anova_rptd works with mixed-model designs
• There's now a demo at https://pdl.perl.org/?page=demos/stats
• The plotting functions now use PDL::Graphics::Simple (which facilitates generating the above)
• The plotting functions have also had a tidy-up, and now include plotting categorical anova data with stripcharts
• It uses the new PDL 2.096+ "lib/*.pd" format so it builds quicker

Proposed Perl Changes, by Dave Cross — essentially a high-level snapshot for those of us not involved in the nitty-gritty.

Olaf Alders arranged to have Randal Schwartz come speak at a meeting of the Toronto Perl Mongers recently, and the video has now been posted on the TPRF channel. I've heard some of this history before, but it was really interesting to hear it directly from Randal.

DuckDuckGo Donates $25,000 to The Perl and Raku Foundation.

DuckDuckGo Growth

Today, on “Giving Tuesday”, The Perl and Raku Foundation (TPRF) is extremely pleased to announce a donation of $25,000 from DuckDuckGo. Since 2011, DuckDuckGo has donated over 6 million dollars to organizations that align with their “vision of raising the standard of trust online”.

There are a couple of episodes beyond today's (the 1st) up already, so you can binge it if you like. Or, you can keep your cool and just read one per day. I won't tell you how to best enjoy it!

Comments welcome.

It's December, so that means that the Perl Advent Calendar is up and running once again.

Enjoy your 24 days of insightful Perl-related articles.

Hello everybody,

we cordially invite you to the German Perl/Raku Workshop 2025.

The workshop will take place next year from Monday 12 May to Wednesday 14 May at the Kolpinghaus in Munich..

The website and the call for papers are already online. We are looking forward to many interesting presentations!

We are always happy to receive support from sponsors. If you or your company would like to support the workshop, please contact us. We will find a way together!

If you have any questions for the organisers, please contact us directly at orga2025@german-perl-workshop.de .

We are still working on hotel recommendations and will publish them on the website.

We look forward to your participation,

Corion for the organizers

Well-known Perl author Dave Cross will be giving a talk titled Still Data Munging with Perl at 4pm Toronto time (8pm London time), on March 27, 2025. The lu.ma event page is here; please register!

Like the Randall Schwartz event, this will be a virtual event. A link will be posted to the page once we have that organized.

PS There are currently 134 people signed up for Randall's talk. I figured we'd be doing well if we got 25 people. The Perl community is so cool.

As part of year 25 of The Perl Advent Calendar, Perl luminary and co-author of O’Reilly’s “Learning Perl” Randal Schwartz will be giving a presentation entitled "Half My Life with Perl".

​This event will be a live stream via Zoom. The stream URL will be provided as we get closer to the date. Please register now if you’re interested in the event, so that we know how many Zoom attendees to plan for.

Updated October 31, 2024: Sounds interesting, Alex. When is the event? Oh, you forgot that part?

This will be a virtual event (so don't worry if you can't find your passport), to be held Saturday, December 14, 2024 at 5pm ET -- Google Calendar reliably tells me that's 10pm UTC. A link to the event will be posted when it's available. So far, we have 60 people signed up -- and it's six weeks away. I don't know what the limits are for a Zoom session, but Olaf is working on arranging that.

Updated December 3, 2024: We now have an even 200 folks signed up, and I've put an arbitrary limit of 300 on this event. Thanks to TPRF for providing access to their Zoom account for this event -- it should be intriguing.

The new on-line location for Perl Mongering in Toronto is here on lu.ma. I've made the decision to move away from meetup.com because it went from cheap and cheerful, to really expensive. We have a Special Event happening in December (produced by Olaf A), and our usual and customary December social on December 19 at C'Est What? in downtown Toronto. Everyone is welcome!

• When: December 18th (on the day of the 37th Birthday of Perl)
• Where : Virtual
• Dress Code : Whatever you want
• Price : FREE
• How to join : sign up for the mailing list (QR in image), or https://perlcommunity.org/science/#mailing_list)
• Wanna know more : https://science.perlcommunity.org/spj#top
• See the Official Announcement and cool meme

• the "News" section was updated with releases from this year for various PDL-related modules
• the "demos" section (https://pdl.perl.org/?page=demos/index, or the "Demos" link in the sidebar) was updated to have the text and output (including images, including animations) of not two but now eight PDL demos - a couple of them might be considered quite neat
• the front page had some text added with something of a "why use PDL" pitch