Think about Loose Coupling | |
PerlMonks |
Re: cpan warning for XML::DoubleEncodedEntitiesby kcott (Archbishop) |
on Dec 30, 2022 at 02:42 UTC ( [id://11149193]=note: print w/replies, xml ) | Need Help?? |
G'day Aldebaran, "Fishing for tips" Take a look at "Perl : Security Vulnerabilities". In particular, CVE-2020-16156 ("CPAN 2.28 allows Signature Verification Bypass."), which (at the time of writing) is at the top of the list. I seem to recall that, if you follow enough links from ++marto's "Super Search result", you'll get to that CVE information, eventually. I couldn't find it after a brief search, so I've posted it separately. That whole "Perl : Security Vulnerabilities" page may be of general interest to you; and, I imagine, quite a few other monks. — Ken
In Section
Seekers of Perl Wisdom
|
|