cpan/Module-Metadata/t/lib/MBTest.pm
cpan/Module-Metadata/t/lib/Tie/CPHash.pm
cpan/Module-Metadata/t/metadata.t
+cpan/Module-Metadata/t/taint.t
cpan/Module-Metadata/t/version.t
cpan/NEXT/lib/NEXT.pm Pseudo-class NEXT for method redispatch
cpan/NEXT/t/actual.t NEXT
'Module::Metadata' => {
'MAINTAINER' => 'dagolden',
- 'DISTRIBUTION' => 'ETHER/Module-Metadata-1.000016.tar.gz',
+ 'DISTRIBUTION' => 'ETHER/Module-Metadata-1.000017.tar.gz',
'FILES' => q[cpan/Module-Metadata],
'EXCLUDED' => [
qr{^maint},
# parrot future to look at other types of modules).
use strict;
-use vars qw($VERSION);
-$VERSION = '1.000016';
+use warnings;
+
+our $VERSION = '1.000017';
$VERSION = eval $VERSION;
use Carp qw/croak/;
# compiletime/runtime issues with local()
my $vsub;
$pn++; # everybody gets their own package
- my $eval = qq{BEGIN { q# Hide from _packages_inside()
+ my $eval = qq{BEGIN { my \$dummy = q# Hide from _packages_inside()
#; package Module::Metadata::_version::p$pn;
use version;
no strict;
};
}};
+ $eval = $1 if $eval =~ m{^(.+)}s;
+
local $^W;
# Try to get the $VERSION
eval $eval;
#!perl
use strict;
+use warnings;
use File::Spec;
use Test::More;
package DistGen;
use strict;
+use warnings;
use vars qw( $VERSION $VERBOSE @EXPORT_OK);
\$VERSION = '0.01';
use strict;
+ use warnings;
1;
$self->$add_unless('t/basic.t', undent(<<" ---"));
use Test::More tests => 1;
use strict;
+ use warnings;
use $self->{name};
ok 1;
$self->change_file( 'Build.PL', undent(<<" ---") );
use strict;
+ use warnings;
use Module::Build;
my \$b = Module::Build->new(
# Some CPANPLUS::Dist::Build versions need to allow mismatches
package MBTest;
use strict;
+use warnings;
use IO::File ();
use File::Spec;
require 5.000;
use strict;
+use warnings;
use vars qw(@ISA $VERSION);
@ISA = qw();
# vim:ts=8:sw=2:et:sta:sts=2
use strict;
+use warnings;
use lib 't/lib';
use IO::File;
use MBTest;
--- /dev/null
+#!/usr/bin/perl -T
+use strict;
+use warnings;
+
+use 5.008000; # for ${^TAINT}
+use Module::Metadata;
+use Test::More;
+use Test::Fatal;
+
+ok(${^TAINT}, 'taint flag is set');
+
+# without the fix, we get:
+# Insecure dependency in eval while running with -T switch at lib/Module/Metadata.pm line 668, <GEN0> line 15.
+is(
+ exception { Module::Metadata->new_from_module( "Module::Metadata" )->version },
+ undef,
+ 'no exception',
+);
+
+done_testing;
use strict;
+use warnings;
use Test::More;
use Module::Metadata;
use lib "t/lib/0_2";
=item *
-L<Module::Metadata> has been upgraded from version 1.000014 to 1.000016.
+L<Module::Metadata> has been upgraded from version 1.000014 to 1.000017.
The module's DESCRIPTION has been re-worded regarding safety/security to
-satisfy CVE-2013-1437.
+satisfy CVE-2013-1437. Also, versions are now detainted if needed. [cpan
+#88576]
=item *