G'day Aldebaran,

"Fishing for tips"

Take a look at "Perl : Security Vulnerabilities". In particular, CVE-2020-16156 ("CPAN 2.28 allows Signature Verification Bypass."), which (at the time of writing) is at the top of the list.

I seem to recall that, if you follow enough links from ++marto's "Super Search result", you'll get to that CVE information, eventually. I couldn't find it after a brief search, so I've posted it separately.

That whole "Perl : Security Vulnerabilities" page may be of general interest to you; and, I imagine, quite a few other monks.