Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]
Groups > comp.lang.python > #77401
| References | <CAPrJNb50Q0h0hKEdaW+ka9fxe=PgShExBtW_=LndDnU8__2cAA@mail.gmail.com> <20140901084652.GA58412@cskk.homeip.net> |
|---|---|
| Date | 2014-09-01 18:59 +1000 |
| Subject | Re: subprocess module usage |
| From | Chris Angelico <rosuav@gmail.com> |
| Newsgroups | comp.lang.python |
| Message-ID | <mailman.13687.1409561994.18130.python-list@python.org> (permalink) |
On Mon, Sep 1, 2014 at 6:46 PM, Cameron Simpson <cs@zip.com.au> wrote: > Not really. If the arguments are coming in from the command line, someone (a > user, even if that user is the programmer) typed them. Even if not > malicious, they can still be mistaken. Or just unfortunate. I'm guessing that what he means is that the example posted here used sys.argv but his actual code doesn't. It's still important to *understand* shell=True, but it can be perfectly safe to use it. ChrisA
Back to comp.lang.python | Previous | Next | Find similar | Unroll thread
Re: subprocess module usage Chris Angelico <rosuav@gmail.com> - 2014-09-01 18:59 +1000
csiph-web