perl-validate

This skill should be used when the user asks to "validate Perl script", "check Perl syntax", "verify Perl code", "/perl-validate", or mentions script validation, compile check, security review, or best practice compliance for Perl code.

Jamie-BitFlight 50 8 Updated 3mo ago

GitHub

Install

npx skillscat add jamie-bitflight/claude-skills/perl-validate

Install via the SkillsCat registry.

SKILL.md

Perl Script Validation

Comprehensive validation of Perl scripts for syntax, security, and best practices.

Validation Checklist

Syntax check (perl -c)
Essential pragmas verification
Security pattern review
Best practice compliance
Documentation check

Syntax Validation

Basic Compile Check

# Check syntax
perl -c script.pl

# With warnings
perl -wc script.pl

# Check module
perl -c -I lib lib/MyApp/Module.pm

Expected Output

Success:

script.pl syntax OK

Failure:

syntax error at script.pl line 15, near "my $"
script.pl had compilation errors.

Essential Pragmas Check

Every production script MUST have:

#!/usr/bin/env perl
use strict;
use warnings;
use autodie;  # For scripts with file operations

Validation Pattern

# Check for strict
grep -l 'use strict' script.pl || echo "MISSING: use strict"

# Check for warnings
grep -l 'use warnings' script.pl || echo "MISSING: use warnings"

# Check shebang
head -1 script.pl | grep -q '^#!' || echo "MISSING: shebang line"

Security Validation

Critical Checks

Issue	Pattern to Find	Fix
Two-arg open	`open\s+\w+,\s*[^<>]`	Use 3-arg open
Backticks with variables	`.*\$`	Use IPC::System::Simple
eval with string	`eval\s+"`	Use eval block
No taint mode	`#!/.perl\s$`	Add `-T` flag

Security Check Commands

# Find two-argument open
grep -n 'open\s\+[A-Z]\+\s*,' script.pl

# Find unsafe backticks
grep -n '`.*\$' script.pl

# Find string eval
grep -n 'eval\s*"' script.pl

# Check for system with string
grep -n 'system\s*"' script.pl

Best Practices Validation

Variable Declarations

# Find undeclared variables (after perl -c passes)
# These would be caught by strict, but double-check:
grep -n '\$[a-z_][a-z0-9_]*\s*=' script.pl | head -20

Function Definitions

Check for proper function structure:

# Good pattern
sub function_name {
    my ($arg1, $arg2) = @_;
    # ...
}

# Check for named parameters
grep -n 'sub.*{' script.pl

Error Handling

# Find eval blocks without error check
grep -n 'eval\s*{' script.pl

# These should be followed by or do { } patterns

Documentation Validation

POD Check

# Validate POD syntax
podchecker script.pl

# Check for POD presence
perl -MPod::Usage -e 'pod2usage(-input => shift)' script.pl >/dev/null 2>&1 || echo "No POD documentation"

Required POD Sections

# Check for NAME section
grep -l '^=head1 NAME' script.pl || echo "MISSING: =head1 NAME"

# Check for SYNOPSIS
grep -l '^=head1 SYNOPSIS' script.pl || echo "MISSING: =head1 SYNOPSIS"

Comprehensive Validation Script

Run complete validation:

#!/bin/bash
# validate-perl.sh

FILE="$1"
ERRORS=0

if [[ ! -f "$FILE" ]]; then
    echo "Usage: validate-perl.sh <file.pl>"
    exit 1
fi

echo "=== Validating: $FILE ==="
echo ""

# 1. Syntax check
echo "--- Syntax Check ---"
if perl -wc "$FILE" 2>&1; then
    echo "PASS: Syntax OK"
else
    echo "FAIL: Syntax errors"
    ERRORS=$((ERRORS + 1))
fi
echo ""

# 2. Pragmas
echo "--- Essential Pragmas ---"
if grep -q 'use strict' "$FILE"; then
    echo "PASS: use strict found"
else
    echo "FAIL: Missing 'use strict'"
    ERRORS=$((ERRORS + 1))
fi

if grep -q 'use warnings' "$FILE"; then
    echo "PASS: use warnings found"
else
    echo "FAIL: Missing 'use warnings'"
    ERRORS=$((ERRORS + 1))
fi
echo ""

# 3. Security patterns
echo "--- Security Checks ---"
if grep -q 'open\s\+[A-Z]\+\s*,' "$FILE"; then
    echo "WARN: Possible bareword filehandle (check manually)"
else
    echo "PASS: No bareword filehandles detected"
fi

if grep -q '`.*\$' "$FILE"; then
    echo "WARN: Backticks with variables (potential injection)"
else
    echo "PASS: No unsafe backticks"
fi
echo ""

# 4. Documentation
echo "--- Documentation ---"
if podchecker "$FILE" 2>&1 | grep -q 'pod syntax OK'; then
    echo "PASS: POD syntax OK"
elif grep -q '^=head1' "$FILE"; then
    echo "WARN: POD present but may have issues"
else
    echo "INFO: No POD documentation"
fi
echo ""

# Summary
echo "=== Summary ==="
if [[ $ERRORS -eq 0 ]]; then
    echo "All critical checks passed."
    exit 0
else
    echo "Found $ERRORS critical issue(s)."
    exit 1
fi

Quick Validation Commands

Syntax only:

perl -wc script.pl

Pragmas check:

head -10 script.pl | grep -E 'use (strict|warnings|autodie)'

Security scan:

perlcritic --severity 5 script.pl

Full validation:

perl -wc script.pl && \
  grep -q 'use strict' script.pl && \
  grep -q 'use warnings' script.pl && \
  echo "Basic validation passed"

Fixing Common Issues

Missing strict/warnings

Add to top of script:

use strict;
use warnings;

Two-argument open

# Wrong
open FILE, $filename;

# Correct
open my $fh, '<', $filename;

Unsafe system calls

# Wrong
system("rm $file");
`ls $dir`;

# Correct
use IPC::System::Simple qw(system capture);
system('rm', $file);
my $output = capture('ls', $dir);

Missing error handling

# Wrong
open my $fh, '<', $file;

# Correct (with autodie)
use autodie;
open my $fh, '<', $file;

# Or explicit
open my $fh, '<', $file
    or die "Cannot open $file: $!";

perl-validate

Install

Perl Script Validation

Validation Checklist

Syntax Validation

Basic Compile Check

Expected Output

Essential Pragmas Check

Validation Pattern

Security Validation

Critical Checks

Security Check Commands

Best Practices Validation

Variable Declarations

Function Definitions

Error Handling

Documentation Validation

POD Check

Required POD Sections

Comprehensive Validation Script

Quick Validation Commands

Fixing Common Issues

Missing strict/warnings

Two-argument open

Unsafe system calls

Missing error handling

Categories

Install

Recommended Skills