[GHSA-5cq6-9f97-wjwx] Crypt::DSA versions through 1.19 for Perl use 2-args open...

[Vendetaaaa]

Updates

• Affected products
• CVSS v3
• Description
• Severity
• Summary

Comments
Mapped the official CPAN package identifier ('Crypt::DSA'), bound the affected version range through '<= 1.19', established the 1.20 patched milestone, expanded on the implicit mechanics of Perl 2-argument open security behaviors, and supplied the correct CWE-552 weakness metadata.

[github-actions]

👋 This pull request has been marked as stale because it has been open with no activity. You can: comment on the issue or remove the stale label to hold stale off for a while, add the Keep label to hold stale off permanently, or do nothing. If you do nothing this pull request will be closed eventually by the stale bot. Please see CONTRIBUTING.md for more policy details.

[taladrane]

hi @Vendetaaaa , thank you for your contribution! After review, we're unable to accept this submission because the affected package isn't part of an ecosystem currently supported by the GitHub Advisory Database. Our database is scoped to advisories for packages published in the supported ecosystems listed here, so we're unable to publish or curate advisories for CPAN at this time.

We've closed this PR as out of scope, but really appreciate you taking the time to report this. If you believe the affected package is published in one of our supported ecosystems and we've misidentified it, please let us know and we'll take another look!