Summary
This is the security checklist you run before shipping any Perl that touches user input, databases, or the shell. It walks through taint mode, input validation with allowlists instead of blocklists, three-argument open to prevent command injection, list-form system calls, and parameterized DBI queries. The examples are concrete: untainting usernames, preventing path traversal with realpath checks, avoiding ReDoS with possessive quantifiers, and validating sort columns against a hash of allowed fields. If you're writing CGI scripts, building a Mojolicious API, or just doing code review on anything that reads from STDIN or ENV, this gives you the patterns to catch injection bugs before they ship. Worth keeping open alongside perlsec.
Install to Claude Code
npx -y skills add affaan-m/everything-claude-code --skill perl-security --agent claude-codeInstalls into .claude/skills of the current project.
Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.
One time payment $9 →
Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →
On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
Files
SKILL.md
Select a file.
Featured
Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.
One time payment $9 →Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
