Recently in Code craft Category

These links are collected from the Perlbuzz Twitter feed. If you have suggestions for news bits, please mail me at andy@perlbuzz.com.

• What's going on with San Francisco Perl Mongers? (blogs.perl.org)
• Contributing is easy: A first-timer talks about adding to CPAN (blogs.perl.org)
• Help keep the world safe from SQL injection: (perlbuzz.com)
• How to learn how to get help in Perl (use.perl.org)
• The Perl Foundation wants your input on grant proposals for 2010 (news.perlfoundation.org)
• Why Ruby is prettier and Padre changes the Perl community (use.perl.org)
• Manage your Perl modules with git (effectiveperlprogramming.com)
• Call for papers for YAPC::NA 2010 in Columbus. Theme: Modern Perl 5 (news.perlfoundation.org)
• Famous Perl One-Liners Explained part 5: Text conversion and substitution (catonmat.net)
• The Italians like ack, too (cattlegrid.info)
• Bash completion for perldoc (blogs.perl.org)
• cpanminus, the new CPAN shell superstar (marcus.nordaaker.com)
• RT @chromatic_x Kudos to *many* active #perl 5 porters for the successful 5.11 release series: (ur1.ca)
• Testing a DB-intensive app (blog.urth.org)
• More news on the TPF wiki overhaul (use.perl.org)
• Do you still program in Perl? (reddit.com)
• Benchmarking is for losers, Profiling rulez! (blog.urth.org)
• Damian Conway's been posting a series of columns on vim: (blogs.perl.org)
• Testing and looging with Dist::Zilla (rjbs.manxome.org)
• Safe.pm 2.25 fixes security hole (blogs.perl.org)
• Serving production web requests with the Catalyst development server (blog.afoolishmanifesto.com)

A while back, I put up bobby-tables.com as a repository for showing people the right way to handle external data in their SQL calls. Whenever someone pops up on a mailing list or IRC and they're building SQL statements using external tainted data, you can just refer them to the site.

In the past few days, I've spiffed up the site (with design help from Jeana Clark) and added pages on Perl and PHP. I need more examples, though. It's 2010, and there's no reason anyone shouldn't know about parameterized SQL calls.

The site source is hosted on github, so if you have any contributions, please fork it and let me know about your applied changes, or you can email me directly.

Thanks!

P.S. In the next few days, I hope to fire up some redesign on perl101.org, too.

These links are collected from the Perlbuzz Twitter feed. If you have suggestions for news bits, please mail me at andy@perlbuzz.com.

• How to import Gravatars into Gmail with 121 lines of Perl (dagolden.com)
• RT @davorg From Amazon.com: After viewing "Data Munging With Perl" 61% of customers buy "I Drink For A Reason" (@davorg is the author of the book)
• ack 1.92 is now out (betterthangrep.com)
• Why learn Perl in 2009? (news.ycombinator.com)
• Screencast about ack from @yerhot (fosscasts.com)
• Presenting Module::Starter 1.54 (use.perl.org)
• Make the pragmas stop! (justatheory.com)
• A collection of Perl one-liners (blogs.perl.org)
• Skud on how developers can make things easier for CPAN users unfamiliar with developer tools (infotrope.net)
• The problems with CGI (blogs.perl.org)
• SVK was end-of-lifed back in May. It was fantastic back when. (use.perl.org)
• Is Perl 5's object system really that bad? (use.perl.org)
• use Config; # discover your path (use.perl.org)
• Perl Foundation has a new Perl events mailing list (news.perlfoundation.org)
• lists.perl.org has been overhauled and updated (blogs.perl.org)
• Perl 5.11.3 now available (use.perl.org)

These links are collected from the Perlbuzz Twitter feed. If you have suggestions for news bits, please mail me at andy@perlbuzz.com.

• blogs.perl.org is a new, modern blogging platform for the Perl community (blogs.perl.org)
• Michael Peters gives thanks for some special folks in the Perl community (use.perl.org)
• Peteris Krumins explores secret Perl 5 operators (catonmat.net)
• Dave Rolsky talks about his Markdown parser, Markdent: (blog.urth.org)
• Using PUT and DELETE methods in web apps (blogs.perl.org)
• Tests are divine (blogs.perl.org)
• Perl advent calendars galore (perlbuzz.com)
• mirod releases a new version of xml_grep2 (blogs.perl.org)
• Introducing gitalist, a modern Git browser written in Perl (blogs.perl.org)
• Posting to CPAN from Github (blogs.perl.org)
• GitPAN's first success: Recreating the history for Pod::Simple (use.perl.org)
• Why use Kephra? (use.perl.org)
• Recap of Eric Whilhelm's Perl Foundation grant to overhaul learn.perl.org (news.perlfoundation.org)
• Using Perl to scrape the web (ssscripting.blogspot.com)
• Peteris Krumins publishes 30 projects on github (catonmat.net)
• cope, a command-line program colorizer in Perl (stuff.cytzol.org)
• The Perl way of avoiding repeated code: (blogs.perl.org)

These links are collected from the Perlbuzz Twitter feed. If you have suggestions for news bits, please mail me at andy@perlbuzz.com.

• Pod::Simple 3.09 hits the CPAN (justatheory.com)
• Strawberry Perl and the nightmare of installing Padre (use.perl.org)
• A busy month for masak in Perl 6 (use.perl.org)
• A productive week in Rakudo-land (use.perl.org)
• Perl one-liners explained part III: Calculations (catonmat.net)
• Handy one-liner to lowercase all filenames in a directory: ls | perl -lne'$x=lc;print qq{mv $_ $x}' | sh -x
• Use CPAN's toolchain to improve your code (use.perl.org)
• Future Perl snuck up on me (headrattle.blogspot.com)
• Find the stupid bug in my progress indicator: say "$n so far" if ( $n % 100000 )";
• I maeked u a shell: lolshell, written in Perl 6 (theintersect.org)
• The horrible bug your command line Perl program probably has (perlbuzz.com)
• Frozen Perl 2010 looking for speakers (news.perlfoundation.org)
• apache2rest is a new framework for REST APIs under mod_perl2 (code.google.com)
• Putting MySQL on a ramdisk to speed up tests (use.perl.org)
• Generating Feedburner graphs (catonmat.net)

Most programmers know you have to check return values from system
functions. Unless you're just starting out as a programmer, you
know that this is bad:

open( my $fh, '<', 'something.txt' );
while ( my $line = <$fh> ) {
    # do something with the input
}

If that open fails the program continues on. The call to
readline will fail, return undef as if we're at
the end of the file, and the user will be none the wiser. If you
have use warnings on, you'll get a "readline() on closed
filehandle", but that's not much help when you should be dying.

Instead, you should be opening your file like this:

my $filename = 'something.txt';
open( my $fh, '<', $filename ) or die "Can't open $filename: $!";

This way, your user gets a useful error message if something goes
wrong, but more importantly, the program doesn't continue as if
nothing is wrong, potentially doing what it should not.

GetOptions needs checking, too

Unfortunately, I see programs where otherwise-sensible programmers
ignore the return code of GetOptions.

use Getopt::Long;
GetOptions(
    'n=i' => \my $count,
);
# Do something that uses $count
print "Processing complete!\n";

There are any number of ways the user can call this program incorrectly:

$ perl foo -n
Option n requires an argument
Processing complete!

$ perl foo -n=five
Value "five" invalid for option n (number expected)
Processing complete!

$ perl foo -m=12
Unknown option: m
Processing complete!

In all three of these cases, the user made a mistake, but the program
lets it slide without a mention. The user's going to be disappointed
with the results.

The solution is simple: Always check the results of GetOptions().
The easiest way is to task && exit(1) after the call:

use Getopt::Long;
GetOptions(
    'n=i' => \my $count,
) or exit(1);

It's simple, effective, and prevents unexpected sorrow.

Gabor Szabo is running a survey about Perl development:

I have set up a simple five-second poll to find out what editor(s) or IDE(s) people use for Perl development. I'd appreciate very much if you clicked on the link and answered the question. You can mark up to 3 answers.

Please also forward this mail in the company you are working and to people in your previous company so we can get a large and diverse set of responses.

The poll will be closed within a week or after we reached 1000 voters. Whichever comes first.

These links are collected from the Perlbuzz Twitter feed. If you have suggestions for news bits, please mail me at andy@perlbuzz.com.

• How the Portland PostgreSQL users group had a Patch-a-Thon (pugs.postgresql.org)
• Padre 0.47 integrates better with Windows (ahmadzawawi.blogspot.com)
• Tim Bunce's Perl Myths talk, updated for 2009 (slideshare.net)
• Free Perl book excerpts from O'Reilly (oreilly.com)
• Building your career in open source (itworld.com)
• Getting the Perl Mongers into shape (szabgab.com)
• François Perrad's talk on the Parrot VM now online (slideshare.net)
• If you're not checking the return code of Getopt::Long::GetOptions(), you have impending sorrow.
• mod_perlite runs Movable Type (majordojo.com)
• Giving remarkable help online (community.livejournal.com)
• Help David Wheeler name methods in DBIx::Connector (justatheory.com)
• DBD::SQLite now has foreign key support (use.perl.org)
• Great move: The Perl Foundation creates a marketing committee (news.perlfoundation.org)
• Topics to consider for Perl 6 newbies (anonymoushash.vmbrasseur.com)
• Perl 5.11.1 released (use.perl.org)

I just released ack version 1.90 to CPAN. If you don't know about ack, it's a text searching tool for programmers aimed specifically at searching large trees of code. Find out more at betterthangrep.com.

Here's the changelog for this version:

1.90        Mon Sep  7 23:24:24 CDT 2009
[ENHANCEMENTS]
Added Ada support.  Thanks to Shaun Patterson.

Added -r, -R and --recurse options as in grep.  They have no
effect because directory recursion is on by default.  Also added
--no-recurse for orthoganality. Thanks to Mark Stosberg and
Ryan Niebur.

Version in --version is prettier.  Thanks, Ori Avtalion.

Added an updated ack.bash_completion.sh from Adam James.

[FIXES]
Expanded --files-without-match to --files-without-matches.

Removed all the hi-bit characters, so we don't have any encoding
problems.  It's all entities now.

Fixed capture-stderr to localize some globals that were obscuring
errors.  Thanks very much to Christopher Madsen.

Fixed uninitialized errors in tickets #138 and #159.

[DOCUMENTATION]
Fixed an incorrect command line in the docs for -f.

Added notes on --pager.  Thanks to Mike Morearty.

[BUILD]
Made the squash program more robust when handling POD.  Thanks
to Kent Fredric.


1.89_02     Wed May 13 16:20:21 CDT 2009
[DISTRIBUTION]
Updated Makefile.PL to use new ExtUtils::MakeMaker features.
Thanks, Schwern.

[FEATURES]
--version now shows the version of Perl that ack is running
under, and the full path to the Perl executable.

Added new switches --color-match and --color-filename, which
let you define ACK_COLOR_MATCH and ACK_COLOR_FILENAME from the
command line.

Added new switch --column to display the column of the first
hit on the row.  Thanks to Eric Van Dewoestine.

Added .ss to --scheme.

[FIXES]
No longer die if you have a .tar.gz file in your tree.

More tweaks to get the detection of input and output pipes
working.

Fixed an amazingly bad call to cmp_ok() in t/ack-passthru.t.

[DOCUMENTATION]
Started an ack FAQ.

Too often I see user-facing text that includes far more detail than is necessary. My current example is this web app where I can upload files for my expense reports. The help screen tells me:

You can attach the following types of files:

• Portable Document Format (.pdf)
• Joint Photographic Experts Group (.jpg or .jpeg)
• Graphic Interchange Format (.gif)
• Tagged Image Format (.tif)
• Windows OS/2 Bitmap Graphics (.bmp)

Why why why do they bother giving those unnecessary explanations of what the file extensions mean? What they really mean is:

You can attach .pdf, .jpg or .jpeg, .gif, .tif and .bmp files.

Has anyone ever said "Hey, Bob, can you send me that Joint Photographic Experts Group file?" No? Then why do you think that people want to read it?