App-Context 0.90
Security Advisories
CVE-2012-6141
The App::Context module 0.01 through 0.968 for Perl does not properly use the Storable::thaw function, which allows remote attackers to execute arbitrary code via a crafted request to (1) App::Session::Cookie or (2) App::Session::HTMLHidden, which is not properly handled when it is deserialized.
Fixed version: >0.968
Reported: 2014-06-04
Kwalitee Issues
- has_meta_yml
-
Add a META.yml to the distribution. Your buildtool should be able to autogenerate it.
- has_human_readable_license
-
Add a section called "LICENSE" to the documentation, or add a file named LICENSE to the distribution.
- has_license_in_source_file
-
Add =head1 LICENSE and the text of the license to the main module in your code.
- use_strict
-
Add 'use strict' (or its equivalents) to all modules, or convince us that your favorite module is well-known enough and people can easily see the modules are strictly written.
Error: Apache::Framework::App
- prereq_matches_use
-
List all used modules in META.yml requires
Error:
- Apache
- Compress::Zlib
- Date::Format
- Exception::Class
- XML::Simple
- main_module_version_matches_dist_version
-
Make sure that the main module name and version are the same of the distribution.
- no_pod_errors
-
Remove the POD errors. You can check for POD errors automatically by including Test::Pod to your test suite.
Error: App-Context-0.90/lib/App/Session.pm -- Around line 144: =cut found outside a pod block. Skipping to next block.
- has_meta_json
-
Add a META.json to the distribution. Your buildtool should be able to autogenerate it.
- meta_yml_has_license
-
Define the license if you are using in Build.PL. If you are using MakeMaker (Makefile.PL) you should upgrade to ExtUtils::MakeMaker version 6.31.
- has_known_license_in_source_file
-
Add =head1 LICENSE and/or the proper text of the well-known license to the main module in your code.
- use_warnings
-
Add 'use warnings' (or its equivalents) to all modules, or convince us that your favorite module is well-known enough and people can easily see the modules warn when something bad happens.
Error: Apache::Framework::App, App, App::Authentication, App::Authorization, App::CallDispatcher, App::CallDispatcher::HTTPSimple, App::Conf, App::Conf::File, App::Context, App::Context::Cmd, App::Context::HTTP, App::Exceptions, App::MessageDispatcher, App::Reference, App::Request::CGI, App::Serializer, App::Serializer::Ini, App::Serializer::OneLine, App::Serializer::Perl, App::Serializer::Properties, App::Serializer::Storable, App::Serializer::TextArray, App::Serializer::Xml, App::Service, App::Session, App::Session::Cookie, App::Session::HTMLHidden, App::ValueDomain
- consistent_version
-
Split the distribution, or fix the version numbers to make them consistent (use the highest version number to avoid version downgrade).
Error: 1.01,1.02,1.03,1.07
- has_separate_license_file
-
This is not a critical issue. Currently mainly informative for the CPANTS authors. It might be removed later.
Modules
Name | Abstract | Version | View |
---|---|---|---|
Apache::Framework::App | metacpan | ||
App | Backplane for core App services | metacpan | |
App::Authentication | Interface for authentication and authorization | metacpan | |
App::CallDispatcher | synchronous (potentially remote) call_dispatcher invocation | metacpan | |
App::CallDispatcher::HTTPSimple | synchronous rpc using simple HTTP protocol | metacpan | |
App::Conf | Load and access configuration data | 1.02 | metacpan |
App::Conf::File | Load and access configuration data | 1.07 | metacpan |
App::Context | context in which we are currently running | metacpan | |
App::Context::Cmd | context in which we are currently running | metacpan | |
App::Context::HTTP | context in which we are currently running | metacpan | |
App::Exceptions | Creates all exception classes used in App. | 1.01 | metacpan |
App::MessageDispatcher | Interface for sending/receiving (possibly) async messages | metacpan | |
App::Reference | a Perl reference, blessed so it can be accessed with methods | 1.03 | metacpan |
App::Request::CGI | the request | metacpan | |
App::Serializer | Interface for serialization and deserialization | metacpan | |
App::Serializer::Ini | Interface for serialization and deserialization | metacpan | |
App::Serializer::OneLine | Interface for serialization and deserialization | metacpan | |
App::Serializer::Perl | Interface for serialization and deserialization | metacpan | |
App::Serializer::Properties | Interface for serialization and deserialization | metacpan | |
App::Serializer::Storable | Interface for serialization and deserialization | metacpan | |
App::Serializer::TextArray | Interface for serialization and deserialization | metacpan | |
App::Serializer::Xml | Interface for serialization and deserialization | metacpan | |
App::Service | Provides core methods for App-Context Services | metacpan | |
App::Session | represents a sequence of multiple events perhaps executed in separate processes | metacpan | |
App::Session::Cookie | a session whose state is maintained across HTML requests by being embedded in an HTTP cookie. | metacpan | |
App::Session::HTMLHidden | a session whose state is maintained across HTML requests by being embedded in an HTML <input type="hidden"> tag. | metacpan | |
App::ValueDomain | Interface for sharing data between processes | metacpan |
Provides
Name | File | View |
---|---|---|
App::LogChannel | lib/App/Authorization.pm | metacpan |