To that, add

Know where to look for Exploit notices, and stay up-to-date

That includes periodically reviewing the change logs on the CPAN modules you use.