Commit 1fe07cfbae11f2465fa59778fccac340d7274d89
Exists in
spb-stable
and in
3 other branches
Merge branch 'attribution-for-shell-guide' into 'master'
Attribution For Shell Guide
Showing
1 changed file
with
6 additions
and
0 deletions
Show diff stats
doc/development/shell_commands.md
| 1 | 1 | # Guidelines for shell commands in the GitLab codebase |
| 2 | 2 | |
| 3 | +## References | |
| 4 | + | |
| 5 | +- [Google Ruby Security Reviewer's Guide](https://code.google.com/p/ruby-security/wiki/Guide) | |
| 6 | +- [OWASP Command Injection](https://www.owasp.org/index.php/Command_Injection) | |
| 7 | +- [Ruby on Rails Security Guide Command Line Injection](http://guides.rubyonrails.org/security.html#command-line-injection) | |
| 8 | + | |
| 3 | 9 | ## Use File and FileUtils instead of shell commands |
| 4 | 10 | |
| 5 | 11 | Sometimes we invoke basic Unix commands via the shell when there is also a Ruby API for doing it. | ... | ... |