sub get_file_and_args {
    my ($path, ) = @_;
    my (@info, );
    while (1) {
        last if ((@info = stat ($path)));
        last if ($path !~ s{^(/.+)(/+.*)}{$1});
        push (@args, $2);
    }
    
    return ($path, \@args);
}
[download]

Later on I want to force checking both $path and @args values (by tainting them) because I cant really be sure who and how is using them. Im not discussing if the same result can be achieved in any other 'better' or elegant way because the answer is 'yes, of course!' - I just want to show that there might be a reason "to replace bits of a tainted string with other bits and continue to consider it tainted".

Well its rather more philosophical question, than a real life situation...

The only answer to that is, there is a difference in philosophy between you and the author of the pragma :)

---

Examine what is said, not who speaks -- Silence betokens consent -- Love the truth but pardon error.

"Science is about questioning the status quo. Questioning authority".

In the absence of evidence, opinion is indistinguishable from prejudice.

RIP an inspiration; A true Folk's Guy

The idea of use 're' 'taint';, is to allow you to break up a tainted string into smaller pieces that will subsequently require being untainted separately. It allows the process of validation to be done safely in separate chunks.

use re 'taint'; just makes sure that regexp derived values ($1, etc) are tainted as well.

It doesn't make much sense to replace bits of a tainted string with other bits and continue to consider it tainted.

Note that if one does

    $var =~ s/(.*)/$1/;
[download]

there isn't such a thing as "untainting".

Really?

"Untainting" variables just means assigning an untainted value to it.

There you go, you just defined it.

Hint. It's the value that tainted, not the variable.

"Untainting" variables just means assigning an untainted value to it.

Hint. It's the value that tainted, not the variable.

Hint. If I write untainted value, I know.