Beefy Boxes and Bandwidth Generously Provided by pair Networks
good chemistry is complicated,
and a little bit messy -LW
 
PerlMonks  

sometimes no Perl news is good news

by zentara (Archbishop)
on Nov 21, 2021 at 13:09 UTC ( #11138996=perlmeditation: print w/replies, xml ) Need Help??

Greetings fellow perlmonks, I am not dead yet, and I'm still iterating away. Came close, but no cigar. :-)

With all the talk of Perl being dead, being surpassed by the illustrious university-backed Python, Javascript and Ruby, I find that Perl is often left off of important lists.... such as this one. https://thehackernews.com/2021/11/11-malicious-pypi-python-libraries.html where it states:

"Efforts to target popular code registries like Node Package Manager (NPM) JavaScript registry, PyPI, and RubyGems have become commonplace and a new frontier for an array of attacks".

Just another list that Perl didn't make. :-)


I'm not really a human, but I play one on earth. ..... an animated JAPH

Replies are listed 'Best First'.
Re: sometimes no Perl news is good news
by marto (Cardinal) on Nov 21, 2021 at 16:58 UTC

    CPAN isn't without it's examples of releases containing bad/dangerous security practices. With any unmoderated repository this is going to be an issue.

Re: sometimes no Perl news is good news
by eyepopslikeamosquito (Bishop) on Nov 21, 2021 at 22:46 UTC

    No surprise I maintain a list of Security References. :)

    From that node, see especially the "CPAN Security" and "Perl Monks Nodes related to CPAN Security" sections.

      It would have been awesome to have a tool that (automatically) shows the CPAN modules that are (or in extend were) affected by CVE's. Like a dashboard. And a CSV export. So users and maintainers could download the currect state and act if required.

      I am allowed to dream, am I?


      Enjoy, Have FUN! H.Merijn
Re: sometimes no Perl news is good news
by jwkrahn (Monsignor) on Nov 21, 2021 at 20:04 UTC

    Welcome back!!

    Good to "see" you again, I missed you.

      "See" is the operative word. Whatever I was hit with, I'm now left with double vision and I sound like Donald Duck when I talk. Quack quack :-)

Log In?
Username:
Password:

What's my password?
Create A New User
Domain Nodelet?
Node Status?
node history
Node Type: perlmeditation [id://11138996]
Approved by Athanasius
Front-paged by Discipulus
help
Chatterbox?
and the web crawler heard nothing...

How do I use this? | Other CB clients
Other Users?
Others having an uproarious good time at the Monastery: (4)
As of 2021-12-04 17:03 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?
    R or B?



    Results (30 votes). Check out past polls.

    Notices?