If you're shipping Perl code that touches user input, databases, or system calls, this walks you through the defensive patterns that matter: taint mode with proper untainting, three-argument open to avoid shell injection, list-form system and exec, DBI placeholders for every query, and regex patterns that won't blow up on attacker input. It's thorough on the stuff that actually breaks in production, like TOCTOU races, path traversal, and ReDoS. The examples show both the vulnerable pattern and the fix, which makes code review faster. You'll want this active anytime you're auditing legacy CGI scripts or building anything in Mojolicious or Catalyst that handles untrusted data.
npx -y skills add affaan-m/ecc --skill perl-security --agent claude-codeInstalls into .claude/skills of the current project.
Select a file.
giuseppe-trisciuoglio/developer-kit