Beefy Boxes and Bandwidth Generously Provided by pair Networks
We don't bite newbies here... much
 
PerlMonks  

Re^2: CSV file with double quotes

by chrestomanci (Priest)
on Sep 15, 2011 at 20:24 UTC ( #926232=note: print w/replies, xml ) Need Help??


in reply to Re: CSV file with double quotes
in thread CSV file with double quotes

In most cases it is silly not to use modules. If you write something yourself you are unlikey to spend more than a few hours on it, and there will be bugs. The module authors will have spend a lot of time examining and debugging the problem, and finding all the corner cases with the help of user bug reports.

If you can't compile binary modules then for CSV there is a pure perl altertanive that is slower, bu still much better tested than anything you can write.

If you Boss won't allow you to install modules then unless there is a very good reason, you should probably be looking for a new Boss.

Replies are listed 'Best First'.
Re^3: CSV file with double quotes
by Anonymous Monk on Nov 27, 2017 at 23:55 UTC
    We have security requirements in our industry to not install additional modules. Is there a way to do this without modules?

      Of course. Everything on CPAN is open source. Simply read the source, understand it and re-implement it in your protected environment.

        Maybe the code-stack then suddenly claims to be company-owned, so their company could claim our open source to be their code and thus try to put their rights to it, which is not allowed.

        So just copying the code is allowed and would work as long as the original attributions are maintained, at which point he might not be allowed to copy open source code into their code-base.

        Safety is sometimes subjective :)

        I don't know if having a git repo with 10 years of history is enough proof to lawyers to acknowledge code property rights.


        Enjoy, Have FUN! H.Merijn
      Yes, and it shows how your security rules keep you safe: Just copy the code from the modules manually into your codebase. It means you won't get any security fixes, but hey, you're safe ;-)

      ($q=q:Sq=~/;[c](.)(.)/;chr(-||-|5+lengthSq)`"S|oS2"`map{chr |+ord }map{substrSq`S_+|`|}3E|-|`7**2-3:)=~y+S|`+$1,++print+eval$q,q,a,
      We have security requirements in our industry to not install additional modules.

      Incredible stupid policy. How should that make anything more secure? People will find crappy workarounds, like copying existing code from CPAN or poorly reimplementing the wheel. Copying code will prevent any security and bugfix updates from happening, so that policy makes your software insecure. And please don't make start ranting about reimplementing wheels. I've seen far too much crappy code written by incompetent people in areas where bugs could hurt or kill people.

      With policies at this stupidy level, I would try to get the policies removed. If that fails, I would quit the job.

      Alexander

      --
      Today I will gladly share my knowledge and experience, for there are no sweeter words than "I told you so". ;-)

Log In?
Username:
Password:

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://926232]
help
Chatterbox?
and all is quiet...

How do I use this? | Other CB clients
Other Users?
Others having an uproarious good time at the Monastery: (3)
As of 2018-01-21 00:08 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?
    How did you see in the new year?










    Results (227 votes). Check out past polls.

    Notices?