This could definitely be useful. There are two things I would change though:
- The script assumes the input filename only has one dot. If the input file is named "my.first.flat.file.db," the output filename is going to be "my.html." This is not a good thing.
- The script doesn't escape characters like &, <, >, etc. This means you have to worry about whether the database contains HTML tags and even JavaScript. What if one of the rows contained something like this:
<script language='JavaScript'>window.open ('http://www.hax0rsit3.bogus') ;</script>|column 2|column 3Bam! Instant security hole.
Of course, you can always turn off JavaScript, and maybe you never intended to use the script on untrusted data, but IMO, it's never too early to think about security. Plus, as it stands the script doesn't handle ampersands and angle brackets properly. Why not just write the data to stdout (avoiding the filename issue) and use CGI.pm to format/escape the HTML?
#!/usr/bin/perl -w
use strict ;
use CGI qw (:standard *table) ;
die "Usage: $0 <input-filename-list>\n" unless @ARGV ;
binmode STDOUT, ':crlf' ;
print start_html (-title => join ('; ', @ARGV)), start_table, "\n" ;
while (<>) {
tr/\r\n//d ;
my @cols = map {escapeHTML ($_)} split '\|' ;
print TR (td ([@cols])), "\n" ;
}
print end_table, end_html ;
I admit the output doesn't look as pretty as your nice hand-formatted output though.
