From 00487d455a10e074a4539a231a9b3028853a7334 Mon Sep 17 00:00:00 2001
From: dosire <sytses@gmail.com>
Date: Mon, 24 Mar 2014 12:04:43 +0100
Subject: [PATCH] References for the issues the guide addresses.

---
 doc/development/shell_commands.md | 6 ++++++
 1 file changed, 6 insertions(+), 0 deletions(-)

diff --git a/doc/development/shell_commands.md b/doc/development/shell_commands.md
index 57b1172..63e58a6 100644
--- a/doc/development/shell_commands.md
+++ b/doc/development/shell_commands.md
@@ -1,5 +1,11 @@
 # Guidelines for shell commands in the GitLab codebase
 
+## References
+
+- [Google Ruby Security Reviewer's Guide](https://code.google.com/p/ruby-security/wiki/Guide)
+- [OWASP Command Injection](https://www.owasp.org/index.php/Command_Injection)
+- [Ruby on Rails Security Guide](http://guides.rubyonrails.org/security.html) section 7.7
+
 ## Use File and FileUtils instead of shell commands
 
 Sometimes we invoke basic Unix commands via the shell when there is also a Ruby API for doing it.
--
libgit2 0.21.2