'Module::Metadata' => {
'MAINTAINER' => 'dagolden',
- 'DISTRIBUTION' => 'BOBTFISH/Module-Metadata-1.000014.tar.gz',
+ 'DISTRIBUTION' => 'ETHER/Module-Metadata-1.000016.tar.gz',
'FILES' => q[cpan/Module-Metadata],
'EXCLUDED' => [
qr{^maint},
use strict;
use vars qw($VERSION);
-$VERSION = '1.000014';
+$VERSION = '1.000016';
$VERSION = eval $VERSION;
use Carp qw/croak/;
}
# Normalize versions. Can't use exists() here because of bug in YAML::Node.
- # XXX "bug in YAML::Node" comment seems irrelvant -- dagolden, 2009-05-18
+ # XXX "bug in YAML::Node" comment seems irrelevant -- dagolden, 2009-05-18
for (grep defined $_->{version}, values %prime) {
$_->{version} = $normalize_version->( $_->{version} );
}
=head1 DESCRIPTION
-This module provides a standard way to gather metadata about a .pm file
-without executing unsafe code.
+This module provides a standard way to gather metadata about a .pm file through
+(mostly) static analysis and (some) code execution. When determining the
+version of a module, the C<$VERSION> assignment is C<eval>ed, as is traditional
+in the CPAN toolchain.
=head1 USAGE
The list of Perl versions covered has been updated.
+=item *
+
+L<Module::Metadata> has been upgraded from version 1.000014 to 1.000016.
+
+The module's DESCRIPTION has been re-worded regarding safety/security to
+satisfy CVE-2013-1437.
+
=back
=head2 Removed Modules and Pragmata
https://perl5.git.perl.org / perl5.git / commitdiff