/ 
perl-5.40.1
⭐ Starred 2013
/ Test2::Manual::Contributing
Security Advisories (2)
CVE-2024-56406 (2025-04-13)

A heap buffer overflow vulnerability was discovered in Perl. Release branches 5.34, 5.36, 5.38 and 5.40 are affected, including development versions from 5.33.1 through 5.41.10. When there are non-ASCII bytes in the left-hand-side of the `tr` operator, `S_do_trans_invmap` can overflow the destination pointer `d`.    $ perl -e '$_ = "\x{FF}" x 1000000; tr/\xFF/\x{100}/;'    Segmentation fault (core dumped) It is believed that this vulnerability can enable Denial of Service and possibly Code Execution attacks on platforms that lack sufficient defenses.

CVE-2025-40909 (2025-05-30)

Perl threads have a working directory race condition where file operations may target unintended paths. If a directory handle is open at thread creation, the process-wide current working directory is temporarily changed in order to clone that handle for the new thread, which is visible from any third (or more) thread already running. This may lead to unintended operations such as loading code or accessing files from unexpected locations, which a local attacker may be able to exploit. The bug was introduced in commit 11a11ecf4bea72b17d250cfb43c897be1341861e and released in Perl version 5.13.6

NAME

Test2::Manual::Contributing - How to contribute to the Test2 project.

DESCRIPTION

This is a short manual page dedicated to helping people who wish to contribute to the Test2 project.

WAYS TO HELP

REPORT BUGS

The easiest way to help is to report bugs when you find them. Bugs are a fact of life when writing or using software. If you use Test2 long enough you are likely to find a bug. When you find such a bug it would help us out if you would submit a ticket.

BUG TRACKERS

Always try to find the preferred bug tracker for the module that has the bug. Here are the big 3 for the main Test2 project:

Test2/Test-Builder/Test-More

https://github.com/Test-More/test-more/issues

Test2-Suite

https://github.com/Test-More/Test2-Suite/issues

Test2-Harness

https://github.com/Test-More/Test2-Harness/issues

SUBMIT PATCHES

You are welcome to fix bugs you find, or from the tracker. We also often accept patches that add new features or update documentation. The preferred method of submitting patches is a github pull request, that said we also accept patches via email.

ADD/UPDATE DOCUMENTATION

Documentation can be flawed just like code can be. Documentation can also become outdated. If you see some incorrect documentation, or documentation that is missing, we would love to get a patch to fix it!

ANSWER QUESTIONS ON IRC/SLACK

We are always hanging out on irc://irc.perl.org, the #perl-qa and #toolchain channels are a good place to find us.

There is also a Test2 slack channel: https://perl-test2.slack.com.

WRITE NEW TOOLS USING TEST2

Writing a new tool using Test2 is always a good way to contribute. When you write a tool that you think is useful, it is nice to share it by putting it on CPAN.

PORT OLD TOOLS TO TEST2

The Test::* namespace has been around for a long time, and has a LOT of tools. The Test2::Tools::* namespace is fairly young, and has less tools. Finding a useful old tool with no modern equivalent, and writing a port is a very good use of your time.

SEE ALSO

Test2::Manual - Primary index of the manual.

SOURCE

The source code repository for Test2-Manual can be found at https://github.com/Test-More/Test2-Suite/.

MAINTAINERS

Chad Granum <exodist@cpan.org>

AUTHORS

Chad Granum <exodist@cpan.org>

COPYRIGHT

Copyright 2018 Chad Granum <exodist@cpan.org>.

This program is free software; you can redistribute it and/or modify it under the same terms as Perl itself.

See http://dev.perl.org/licenses/