From c1fb0fe144383ba715fdece623a9f38df87a48d7 Mon Sep 17 00:00:00 2001 From: Toddr Bot Date: Tue, 7 Apr 2026 04:11:01 +0000 Subject: [PATCH] fix CPANTS kwalitee issues for Net-ACME2 0.41 Add =head1 LICENSE to main module POD (core kwalitee), add SECURITY.md with vulnerability reporting contact, and add CONTRIBUTING.md with development guidelines. Update MANIFEST accordingly. Addresses: has_license_in_source_file, has_known_license_in_source_file, has_security_doc, security_doc_contains_contact, has_contributing_doc. Co-Authored-By: Claude Opus 4.6 --- CONTRIBUTING.md | 33 +++++++++++++++++++++++++++++++++ MANIFEST | 2 ++ SECURITY.md | 17 +++++++++++++++++ lib/Net/ACME2.pm | 5 +++++ 4 files changed, 57 insertions(+) create mode 100644 CONTRIBUTING.md create mode 100644 SECURITY.md diff --git a/CONTRIBUTING.md b/CONTRIBUTING.md new file mode 100644 index 0000000..0a3f32b --- /dev/null +++ b/CONTRIBUTING.md @@ -0,0 +1,33 @@ +# Contributing to Net::ACME2 + +Contributions are welcome! Here's how to get started. + +## Getting Started + +```bash +git clone https://github.com/cpan-authors/Net-ACME2.git +cd Net-ACME2 +cpanm --notest --installdeps . +perl Makefile.PL +make test +``` + +## Guidelines + +- Keep changes focused: one concern per pull request. +- Add or update tests for any behavioral changes. +- Follow existing code style and conventions. +- Minimum Perl version is 5.14.0 -- avoid features from newer Perl. +- The core library is pure Perl (no XS). Optional XS backends are fine. + +## Pull Requests + +1. Fork the repository and create a topic branch. +2. Make your changes and ensure `make test` passes. +3. Submit a pull request against `main` with a clear description. + +## Reporting Bugs + +Open an issue at https://github.com/cpan-authors/Net-ACME2/issues. + +For security vulnerabilities, see [SECURITY.md](SECURITY.md). diff --git a/MANIFEST b/MANIFEST index e77ce8f..a777867 100644 --- a/MANIFEST +++ b/MANIFEST @@ -1,5 +1,6 @@ AI_POLICY.md Changes +CONTRIBUTING.md examples/dns-01.pl examples/dns-01_async.pl examples/http-01.pl @@ -50,6 +51,7 @@ Makefile.PL MANIFEST This list of files MANIFEST.SKIP README.md +SECURITY.md t/lib/Test/ACME2_Server.pm t/lib/Test/Crypt.pm t/Net-ACME2-Authorization.t diff --git a/SECURITY.md b/SECURITY.md new file mode 100644 index 0000000..87890c6 --- /dev/null +++ b/SECURITY.md @@ -0,0 +1,17 @@ +# Security Policy + +## Reporting a Vulnerability + +If you discover a security vulnerability in Net::ACME2, please report it +responsibly. **Do not open a public GitHub issue.** + +Instead, please email the maintainer directly: + +- **Todd Rinaldo** + +You should receive a response within 72 hours. If the vulnerability is +confirmed, a fix will be developed and released as soon as practical. + +## Supported Versions + +Security fixes are applied to the latest release only. diff --git a/lib/Net/ACME2.pm b/lib/Net/ACME2.pm index 3073cda..6f0027c 100644 --- a/lib/Net/ACME2.pm +++ b/lib/Net/ACME2.pm @@ -1230,4 +1230,9 @@ to generate keys and CSRs. L implements client logic for the variant of this protocol that Let’s Encrypt first deployed. +=head1 LICENSE + +This library is free software; you can redistribute it and/or modify +it under the same terms as Perl itself. See L. + =cut