Changes - metacpan.org

Revision history for Perl distribution WWW-RobotRules

6.03      2026-05-23 02:23:28Z
    - Doing a proper version bump.

6.02      2026-05-21 14:45:27Z
    - WWW::RobotRules::AnyDBM_File::agent() no longer truncates the on-disk
      cache through an untie/tie(O_TRUNC) sequence. Stale-data reset now goes
      through the tied-hash CLEAR, eliminating a symlink-follow race that a
      local attacker with write access to the cache directory could exploit
      to overwrite arbitrary files writable by the crawler user.
    - The on-disk cache file mode has been tightened from 0640 to 0600.
    - t/rules-dbm.t has been hardened against symlink attacks on its tempfile
      during package builds.
    - A new SECURITY CONSIDERATIONS POD section documents the residual
      caller-trust requirement: the constructor's tie still follows symlinks
      because AnyDBM_File cannot portably plumb O_NOFOLLOW, so the caller
      must store the cache file in a directory writable only by the user
      that runs the code.
    - References: CWE-377, CWE-378, CWE-379.

6.02      2012-02-18
    - Restore perl-5.8.1 compatibility.

6.01      2011-03-13
    - Added legal notice and updated the meta repository link.

6.00      2011-02-25
    - Initial release of WWW-RobotRules as a separate distribution. There are
      no code changes besides incrementing the version number since
      libwww-perl-5.837. The WWW::RobotRules module used to be bundled with
      the libwww-perl distribution.

	Global
`s`	Focus search bar
`?`	Bring up this help dialog

	GitHub
`g` `p`	Go to pull requests
`g` `i`	Go to GitHub issues (only if GitHub is preferred repository)

	POD
`g` `a`	Go to author
`g` `c`	Go to changes
`g` `i`	Go to issues
`g` `d`	Go to dist
`g` `r`	Go to repository/SCM
`g` `s`	Go to source
`g` `b`	Go to file browse

Search terms
module: (e.g. module:Plugin)
distribution: (e.g. distribution:Dancer auth)
author: (e.g. author:SONGMU Redis)
version: (e.g. version:1.00)

Keyboard Shortcuts