Sign the dist as the last step before creating the archive. Take care not to modify/regenerate dist meta files or the manifest.

Error: Old SIGNATURE detected. Please inform the module author to regenerate SIGNATURE using Module::Signature version 0.82 or newer. gpg: Signature made Mon 18 Apr 2011 12:07:17 AM JST gpg: using DSA key 742F2A428E635A5E gpg: Can't check signature: No public key ==> BAD/TAMPERED signature detected! <==

Add a META.json to the distribution. Your buildtool should be able to autogenerate it.

Define the license if you are using in Build.PL. If you are using MakeMaker (Makefile.PL) you should upgrade to ExtUtils::MakeMaker version 6.31.

Add 'use warnings' (or its equivalents) to all modules, or convince us that your favorite module is well-known enough and people can easily see the modules warn when something bad happens.

Error: Module::Signature

List all modules used in the test suite in META.yml test_requires

Error:

• IPC::Run

This is not a critical issue. Currently mainly informative for the CPANTS authors. It might be removed later.

Add SECURITY(.pod|md). See Software::Security::Policy.

Add SECURITY(.pod|md) and add a contact address. See Software::Security::Policy.

Add CONTRIBUTING(.pod|md). See https://docs.github.com/en/communities/setting-up-your-project-for-healthy-contributions/setting-guidelines-for-repository-contributors.