The CGI::Application module before 4.50_50 and 4.50_51 for Perl, when run modes are not specified, allows remote attackers to obtain sensitive information (web queries and environment details) via vectors related to the dump_html function.
run_as_psgi() works like run, but directly returns the expected PSGI response structure
psgi_app() wraps up all the PSGI bits to call and run the application and return a PSGI code ref:
$psgi_coderef = WebApp->psgi_app({ ... args to new() ... });
DOCUMENTATION
docs for header_props() were improved
INTERNAL
source control management was moved from darcs to git. Those who prefer darcs are are more familiar with it are advised to try the darcs-git.py wrapper for git.
The test file psgi_app.t is missing from this release and will be added later.