| CPAN Ratings (Gamma) String-ShellQuote reviews | |
| Home | Search | About | Login |
RSS | Module Info | Add a review of String-ShellQuote
4 out of 4 found this review helpful:
Beginning Perl programmers may be tempted to do somethings like `ls $dir` or `ls "$dir"` or `ls '$dir'`. However, they all pose security risks because one can put shell characters inside. While system (@args) and open, "|-"/"-|", @args provide a partial solution to the problem, you still sometimes need the shell for help.
The String-ShellQuote module provides a good way to escape arguments for inclusion in shell commands for safety and robustness. It has a simple and clean interface and its use is highly recommended.
Shlomi Fish - 2008-08-23 06:02:47
Was this review helpful to you?
Yes
No
Simple module, just works. Use it when you have a lot of arguments to pass to system(). Works on every os I have tried.
zak zebrowski - 2004-06-24 07:05:15
Was this review helpful to you?
Yes
No
|
|
|
