CPAN Security Advisories
This site provides human-readable HTML access to all CPAN Security Advisories (CPANSA), converted from the CSAF 2.0 standard (https://www.csaf.io). Each advisory includes detailed information about vulnerabilities affecting CPAN modules, along with associated CVEs, CVSS scores, and links to external resources for further context.
Each advisory includes:
- A description of the vulnerability
- The affected CPAN distribution
- Related CVEs with CVSS severity scores
- Links to official sources and references
- Direct access to the original CSAF .json file
All data is automatically extracted and updated from the CPANSA::DB distribution database.
OASIS CSAF 2.0 Standard
CSAF is a standard for machine-readable security advisories developed by the OASIS CSAF Technical Committee). CSAF enables individuals and organizations to successfully disclose and consume security advisories in machine-readable format. The standard also specifies the distribution and discovery of CSAF documents. The CSAF Security Advisory files found in this repository were designed following the CSAF v2.0 standard published by (OASIS Open).
CPANSA CSAF Feed
- cpansa-csaf-feed-tlp-white.json - ROLIE feed
- index.txt - Index of CSAF documents
- changes.csv - List of changes