# Changes for CPANSA::DB 20260531.001 2026-06-02T10:30:57Z * data update for 2026-05-31 20260524.001 2026-05-24T06:49:46Z * data update for 2026-05-24 20260517.001 2026-05-17T06:00:57Z * data update for 2026-05-17 20260503.001 2026-05-04T12:30:28Z * data update for 2026-05-03 20260430.001 2026-04-30T14:13:40Z * data update for 2026-04-30 20260426.001 2026-04-30T00:48:45Z * data update for 2026-04-26 20260419.002 2026-04-19T16:48:53Z * data update for 2026-04-19 * fix from haarg for a couple of improperly split affected_versions (#393) for Encode and IO::Socket 20260412.001 2026-04-12T14:48:28Z * data update 2026-04-12 20260405.001 2026-04-05T06:41:28Z * data update for 2026-04-05 20260329.001 2026-03-29T07:00:43Z * data update for 2026-03-29 20260327.002 2026-03-27T21:51:53Z * data update for 2026-03-27 * CVE-2006-10002, CVE-2006-10003 for XML::Parser 20260318.001 2026-03-18T21:50:56Z * data udpate for 2026-03-18 * CVE-2026-4177 for YAML::Syck 20260315.002 2026-03-15T16:15:11Z * data update for 2026-03-15 20260311.002 2026-03-11T13:29:32Z * note fix for Crypt::CBC (CVE-2025-2814 * stop using YAML::Tiny for internal tools; always use YAML::XS * some files in cpansa/ have updated to the default format for YAML::XS * updated reports for latest versions on CPAN 20260308.006 2026-03-08T14:26:07Z * CVE-2026-30909 for Crypt::NaCl::Sodium * CVE-2026-30910 for Crypt::Sodium::XS * updates to external reports for libsodium * updates to external reports for harfbuzz 20260301.001 2026-03-01T05:21:51Z * CVE-2026-3255 for HTTP::Session2 * CPANSA-HTTP-Session2-2018-01 is now assigned CVE-2018-25160 20260228.001 2026-02-28T08:40:41Z * CVE-2026-2597 for Crypt::SysRandom::XS * CVE-2025-40932 for CPANSA-Apache-SessionX-2005-01 20260225.001 2026-02-25T10:14:16Z * data update for CVE-2024-58041 for Smolder 20260223.001 2026-02-23T06:01:16Z * data upodate for 2026-02-23 * fix data problem in boost.yml (#383 from Olaf Alders) 20260222.001 2026-02-22T06:54:05Z * data update for 2026-02-22 20260220.001 2026-02-20T23:33:30Z * data update for 2026-02-20 20260215.001 2026-02-16T08:25:35Z * data upate for 2026-02-15 20260208.001 2026-02-09T09:06:59Z * data update for 2026-02-08 20260208.001 2026-02-09T09:06:19Z * data update for 2026-02-08 20260129.001 2026-01-29T18:57:25Z * data update for 2026-01-29 * adds HarfBuzz::Shaper 20260125.001 2026-01-26T00:34:11Z * data update for 2026-01-24 20260120.004 2026-01-20T23:56:34Z * make the databases smaller with a terse data structure (#376) 20260120.002 2026-01-20T18:31:24Z * data update for 2026-01-20 20260110.003 2026-01-11T02:05:40Z * data update for 2025-01-10 * includes CVE-2025-15444 for Crypt::Sodium::XS 20260104.001 2026-01-04T05:30:38Z * data update for 2026-01-04 20251228.001 2025-12-29T00:58:29Z * data update for 2025-12-28 20251221.001 2025-12-21T06:32:22Z * data update for 2025-12-21 20251214.001 2025-12-14T06:11:25Z * data update for 2025-12-14 20251207.001 2025-12-07T06:11:51Z * data update for 2025-12-07 20251130.001 2025-11-30T13:32:47Z * data update for 2025-11-30 20251123.001 2025-11-23T10:37:20Z * data update for 2025-11-23 20251116.001 2025-11-16T06:07:49Z * data update for 2025-11-16 20251109.001 2025-11-09T07:44:28Z * data update for 2025-11-09 20251102.001 2025-11-02T21:20:08Z * data update for 2025-11-02 20251026.001 2025-10-26T04:18:46Z * data update for 2025-10-26 20251020.002 2025-10-20T23:44:27Z * Two reports for Mojolicious have been judged to not be resolved: CVE-2024-58134 and CVE-2024-58135 20251019.001 2025-10-20T13:37:49Z * data update for 2025-10-19 20251018.003 2025-10-19T01:32:27Z * data update for 2025-10-18 20251017.001 2025-10-17T16:51:12Z * data update for 2025-10-17 * CVE-2024-45321 is judged to be still affected (#361) 20251013.131 2025-10-13T23:49:04Z * data update for 2025-10-13 20251003.001 2025-10-03T17:10:41Z * data update for 2025-10-03 20250807.001 2025-08-07T10:16:28Z * data update for 2025-08-07 20250806.001 2025-08-06T17:26:11Z * data update for 2025-08-06, including perl fixes for CVE-2025-40909 20250731.002 2025-07-31T14:03:10Z * catch up on Mojolicious fixing its session cookie encryption 20250730.001 2025-07-30T12:30:22Z * Crypt::CBC 3.07 fixes 2025-2814 20250729.001 2025-07-29T11:38:21Z * data update for 2025-07-29 20250703.001 2025-07-03T17:08:02Z * data update for 2025-07-03 * includes CVE-2025-40910 for Net::IP::LPM 20250617.001 2025-06-18T04:18:55Z * data update for 2025-06-17 * includes CVE-2025-40915 for Mojolicious::Plugin::CSRF 20250613.001 2025-06-14T02:18:40Z * data udpate for 2025-06-12 * included CVE-2025-40912 and 40914 for CryptX 20250612.001 2025-06-13T18:02:40Z * data update for 2025-06-12 * includes CVE-2025-40911 for Net::CIDR::Set 20250521.001 2025-05-22T02:41:43Z * data update to fix latest YAML::LibYAML report (#200) 20250520.001 2025-05-20T15:30:43Z * data update for 2025-05-20 20250518.002 2025-05-18T20:23:11Z * data update for 2025-05-18 20250513.001 2025-05-13T15:23:15Z * data update for 2025-05-13 * new report for Plack-Middleware-Statsd 20250512.001 2025-05-13T01:14:07Z * fix smart-quote that was causing CPAN::Audit tests to fail with wide-character warnings * data update for 2025-05-12 20250506.001 2025-05-06T12:23:42Z * data update for 2025-05-06 20250505.001 2025-05-05T23:52:41Z * data update for 2025-05-05 20250504.001 2025-05-04T20:05:28Z * data update for 2025-05-04 (may the 4th be with you) 20250414.001 2025-04-14T14:26:08Z * data update for 2024-04-14 20250413.002 2025-04-13T19:32:15Z * data update for 2025-04-13 20250407.003 2025-04-07T15:58:44Z * replace earlier release that had testing problem (#194) 20250407.002 2025-04-07T08:47:37Z * data update for 2025-04-07 20250403.001 2025-04-04T12:24:22Z * update for 2025-04-03 20250304.001 2025-03-04T15:02:27Z * data update for 2025-03-04 * version data for modules now includes versions that only show up in perl core (dual-lived versions not on CPAN) (GitHub #190) 20250206.001 2025-02-06T05:41:55Z * data update 20250125.001 2025-01-25T16:16:57Z * data update for 2025-01-05 * Crypt::Primes 0.52 fixes its report (#189) 20250109.001 2025-01-10T04:38:37Z * data update for 2025-01-09 20250104.001 2025-01-04T17:10:28Z * data update * CVE-2025-22376 for Net::OAuth 20250103.002 2025-01-03T12:56:48Z * data update for DBD::SQLite for CVE-2006-6153 20250103.001 2025-01-03T06:30:10Z * data update 20250102.001 2025-01-02T19:54:21Z * data update * CVEs assigned for Net::EasyTCP 20241231.001 2024-12-31T16:40:38Z * data update for 2024-12-31 * CVE-2006-0053 for Imager * CVE-2020-36827 for XAO::Web 20241229.001 2024-12-30T23:31:49Z * data update * Adds reports for Crypt::Prime, Crypt::Random, and EasyTCP 20241227.001 2024-12-28T03:47:58Z * data update * new report for Crypt::Random::Source (#179) 20241218.005 2024-12-19T01:22:10Z * Add report for App::Genpass (#178) * regenerate data 20241208.003 2024-12-08T21:47:48Z * data update for 2024-12-08 20241203.001 2024-12-04T02:20:11Z * data update for 2024-12-03 20241126.001 2024-11-26T23:05:31Z * data update * the stuff using Data::Rx moves to xt/, which is not distributed (#172) 20241125.001 2024-11-25T20:15:46Z * data update 20241122.009 2024-11-22T14:33:57Z * fix the GPG signatures 20241122.003 2024-11-22T12:34:01Z * fix meta data, that had done stupid date things 20241121.002 2024-11-21T21:18:26Z * data update for 2024-11-21 * includes CVE-2024-10224 for Module::ScanDeps (#170) * Pod broken out to separate files since MetaCPAN doesn't like large files 20241118.002 2024-11-18T16:01:32Z * Remove Mojo::Util as a pre-requisite (#168) 20241118.001 2024-11-18T15:48:04Z * Regenerate dist to fix some metadata issues (#169) 20241117.003 2024-11-17T21:06:07Z * test release 20241117.002 2024-11-17T21:01:42Z * test release 20241117.001 2024-11-17T20:14:34Z * initial release. This breaks out the data portion of CPAN::Audit into a separate dist that can be updated independently. This maintains the CPAN::Audit::DB module (for now), creates a new module CPANSA::DB to replace it evenutally, and also distributes a JSON version of the database for people who want to use it without CPAN::Audit.