Todd Rinaldo

Recent Actions

• Commented on 575 Pull Requests in Three Weeks: What Happens When AI Meets CPAN Maintenance
  > I do know that just because one of my modules passes all tests on my box does not mean it will pass everywhere. One of the critical pieces we learned about rapid development was assuring a complex CI workflow....
• Posted AI Contributions to CPAN: The Copyright Question to Todd Rinaldo

  This is a developer's perspective, not legal advice. I'm not a lawyer. What follows is my personal reading of publicly available licenses, policy documents, and one court decision. If you're making decisions about your module's legal exposure, talk to a lawyer.

  The open source wor…

• Commented on 575 Pull Requests in Three Weeks: What Happens When AI Meets CPAN Maintenance
  > just need to adjust your AGENTS.md to avoid annoying cliches (at least you didn't say "learnings" or "concrete") It's what I get for not being more pedantic with a French person's English pluralisms. :) Trust me I actually do...
• Commented on 575 Pull Requests in Three Weeks: What Happens When AI Meets CPAN Maintenance
  > In the next iteration of this, may I suggest doing development releases? > Let CPAN Testers chew on the code for a bit before you put it into production. The issue so far has not been my own module's...
• Commented on 575 Pull Requests in Three Weeks: What Happens When AI Meets CPAN Maintenance
  > So with all that, I need to say this plainly: each of these pull requests was reviewed and merged by you. Not rubber-stamped. Reviewed. Correct! I also remember the decision I made on both of these and I determined...
• Commented on 575 Pull Requests in Three Weeks: What Happens When AI Meets CPAN Maintenance
  > Will you be doing this again on a set of different libraries in the future ? If people are open to it. I'm currently looking at offering to help with LibXML but I consider this to be a decision...
• Commented on 575 Pull Requests in Three Weeks: What Happens When AI Meets CPAN Maintenance
  > What are your thoughts on addressing the problem of "trained ignorance" in LLMs? Not sure what you mean here. Making sure the code is well documented and POD-ed certainly makes claude more knowledgeable. In one case I caused a...
• Commented on 575 Pull Requests in Three Weeks: What Happens When AI Meets CPAN Maintenance
  The $100 monthly claude account was enough. $20 could have been used but it would have taken longer....
• Posted 575 Pull Requests in Three Weeks: What Happens When AI Meets CPAN Maintenance to Todd Rinaldo

  On March 17th, I installed a bot called koan on my personal Claude account. It's designed to monitor your four-hour usage limits, maintain a queue of "missions," and efficiently use your credits — even while you're sleeping.

  Three weeks l…

• Commented on Perl7 is a fork of values
  By your logic, anything run by a BDFL would be abandoned. The "B" in "BDFL" stands for benevolent. Neither Sawyer, nor you Todd, exhibit this quality. Thanks! My comment was not about Perl's governance so much as most other...
• Commented on Perl7 is a fork of values
  You will support reforms then I assume. Giving members of the perl community a voice? TPF membership, TPF elections etc. I have no membership in TPF either other than being a conference organizer (which carries no membership). I openly...
• Commented on Perl7 is a fork of values
  People overwhelming migrate from countries without democracies in to countries with democracies. I don't think your assertion tracks. By your logic, anything run by a BDFL would be abandoned. I don't think that belief matches reality....
• Posted 4 days in Amsterdam with porters to Todd Rinaldo

  
  

  Deprecation of $[

  Last year, we went over all of the long-stan…

• Posted grep.metacpan.org at the Perl Toolchain Summit to Todd Rinaldo

  Introducing the new way to grep CPAN: https://grep.metacpan.org/
  My co-worker Nicholas and I were honored to be invited to attend the Perl Toolchain Summit in Lyo…

• Posted Reviewing Perl 5 . in @INC at the Perl Toolchain Summit to Todd Rinaldo

  Location: Lyon, France
  Attending: SawyerX, Merijn (Tux) Brand, Todd (toddr) Rinaldo, Nicolas (atoomic) Rochelemagne, Lee Johnson, Aaron (arc) Crane, Leon (leont) Timmermans, Matthew (alh) Horsfall, Kenichi (charsbar) …

• Posted How removing . from @INC is about to break CPAN to Todd Rinaldo

  In Perl 5.26, it will no longer be a safe assumption to assume . is in @INC. This is a good move towards a more secure Perl, but will break the installation of many CPAN modules. For those of you wondering why this was done, see

• Posted What happened to . in @INC to Todd Rinaldo

  In Perl, module loads have always attempted to look for the module you refer to in the current working directory (not necessarily the script location). It has always been this way in Perl. This goes back to the keyword "do" which precedes "require". When this was originally coded, it was also…

• Commented on The 2016 P5P Hackathon
  @Ether: The site and the wiki can be found here: http://p5h.org/...
• Commented on The 2016 P5P Hackathon
  It won't be an ACT site but I will let you know when we get the wiki up....
• Posted YAPC::NA 2013 in Texas, June 3-5. to Todd Rinaldo

  YAPC::NA 2013 will be held in the "Live Music Capital of the World", Austin, Texas, from June 3rd through June 5th. 
  
  The conference theme is "25 Years of Perl". Come celebrate Perl's silver year with all your favorite members of the Perl community. 
  
  

Recent Actions from Todd Rinaldo

Comment Threads

• Dean commented on 575 Pull Requests in Three Weeks: What Happens When AI Meets CPAN Maintenance

  I noticed your bot sending you pull requests and was meaning to ask some questions about it bit you've saved me the effort.

  This is very impressive and exactly what is needed. I noticed one such pull requested which got rid off a modules outdated indirect object syntax. My reaction was whatever a metaphorical fist pump looks like when you're just sitting at your computer and don't actually move.

  Absolutely, make AI do all that boring stuff! I have been having it take a crack at various outstanding requests on modules and merging good results. I have also simply pointed it at …

• Grinnz commented on 575 Pull Requests in Three Weeks: What Happens When AI Meets CPAN Maintenance

  I'm not sure where you got this idea. CPAN Testers covers whatever individual testers decide to cover, which certainly includes downstream deps of trial releases. But more importantly: how would it hurt?

• Dean commented on 575 Pull Requests in Three Weeks: What Happens When AI Meets CPAN Maintenance

  Having some mechanism to determine downstream breakage would be a net win with our without coding agents.

  It would be even more helpful with an automated mechanism to communicate changes to downstream authors.

  As far as I can tell, other languages are now pinning everything and using bots to move the pins when tests pass. This has the major upside of each project itself opting-in to tracking upstream changes - not just being blasted with automated break notifications from some system they haven't decided to care about (or even know about).

  Pros and cons - but a proble…

• Tom Wyant commented on 575 Pull Requests in Three Weeks: What Happens When AI Meets CPAN Maintenance

  I don't know how development releases would help you. I do know that just because one of my modules passes all tests on my box does not mean it will pass everywhere. If the problem is truly only downstream failures, maybe development releases wouldn't help.

  But maybe what this means is that we need more testing infrastructure -- something analogous to "Blead Breaks CPAN," but for CPAN itself, not perl.

• Robert Rothenberg commented on 575 Pull Requests in Three Weeks: What Happens When AI Meets CPAN Maintenance

  I have a lot of concerns about using LLMs.

  The sheer volume of code changes they can submit seems overwhelming. That's a lot to review, and it seems that bugs can slip through. I've seen some daft changes show up in codebases due to AI.

  There has also been some research in poisoning LLMs so that can insert security holes in code, not to mention years of badly-written/insecure code posted online that they have been trained on.

  There are also some serious legal and ethical concerns about using them:

  Do the PRs contain code snippets from other code with incompat…

Responses to Comments from Todd Rinaldo