Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. ModPerl>
  3. ModPerl
static code analysis for Perl5 code?
joseph.he.2008 at gmail
Feb 15, 2024, 7:43 AM
Post #1 of 2 (57 views)
Permalink
All, good day.

Our company wants to use some tool to do a static analysis on our Perl5
code like what they can do for Java, etc.

I know Perl::Critic can scan the code for the 'best practice'. Other than
this, anybody knows that there is another tool supposedly to help find the
security loopholes, etc?

Thank you very much.
Joseph
Re: static code analysis for Perl5 code? [ In reply to ]
joe at sunstarsys
Feb 15, 2024, 10:03 AM
Post #2 of 2 (57 views)
Permalink
In short, you should just be running Perl with the -T flag. Perl::Critic is just a very opinionated linter.

Joe Schaefer, Ph.D
<joe@sunstarsys.com>
+1 (954) 253-3732
SunStar Systems, Inc.
Orion - The Enterprise Jamstack Wiki

________________________________
From: Joseph He <joseph.he.2008@gmail.com>
Sent: Thursday, February 15, 2024 10:43:41 AM
To: mod_perl list <modperl@perl.apache.org>
Subject: static code analysis for Perl5 code?

All, good day.

Our company wants to use some tool to do a static analysis on our Perl5 code like what they can do for Java, etc.

I know Perl::Critic can scan the code for the 'best practice'. Other than this, anybody knows that there is another tool supposedly to help find the security loopholes, etc?

Thank you very much.
Joseph

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal