Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

do note that even if you don't do shell expansion you're still subject to "smart" programs interpreting a single argv that starts with a dash as a parameter and its argument. I'm sure there's going to be a CVE about this at some point if there hasn't already.


Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: