Strona główna Odkrywaj Pomoc
Zarejestruj się Zaloguj się
dayuan
/
manyi
6
0
Forkuj 0
Pliki Problemy 0 Oczekujące zmiany 0 Wiki
Drzewo: 34216f9fac
Gałęzie Tagi
manyi
/
venv
/
Lib
/
site-packages
/
shellescape-3.4.1.dist-info
/
DESCRIPTION.rst

DESCRIPTION.rst 2.0 KB
Historia Czysty

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283 
  1. Source Repository: https://github.com/chrissimpkins/shellescape
    2. 

  2. 

  3. Description
    4. 

  4. -----------
    5. 

  5. 

  6. The shellescape Python module defines the ``shellescape.quote()`` function that returns a shell-escaped version of a Python string.  This is a backport of the ``shlex.quote()`` function from Python 3.4.3 that makes it accessible to users of Python 3 versions < 3.3 and all Python 2.x versions.
    7. 

  7. 

  8. quote(s)
    9. 

  9. --------
    10. 

  10. 

  11. >From the Python documentation:
    12. 

  12. 

  13. Return a shell-escaped version of the string s. The returned value is a string that can safely be used as one token in a shell command line, for cases where you cannot use a list.
    14. 

  14. 

  15. This idiom would be unsafe:
    16. 

  16. 

  17. .. code-block:: python
    18. 

  18. 

  19. 	>>> filename = 'somefile; rm -rf ~'
    20. 

  20. 	>>> command = 'ls -l {}'.format(filename)
    21. 

  21. 	>>> print(command)  # executed by a shell: boom!
    22. 

  22. 	ls -l somefile; rm -rf ~
    23. 

  23. 

  24. 

  25. ``quote()`` lets you plug the security hole:
    26. 

  26. 

  27. .. code-block:: python
    28. 

  28. 

  29. 	>>> command = 'ls -l {}'.format(quote(filename))
    30. 

  30. 	>>> print(command)
    31. 

  31. 	ls -l 'somefile; rm -rf ~'
    32. 

  32. 	>>> remote_command = 'ssh home {}'.format(quote(command))
    33. 

  33. 	>>> print(remote_command)
    34. 

  34. 	ssh home 'ls -l '"'"'somefile; rm -rf ~'"'"''
    35. 

  35. 

  36. 

  37. The quoting is compatible with UNIX shells and with ``shlex.split()``:
    38. 

  38. 

  39. .. code-block:: python
    40. 

  40. 

  41. 	>>> remote_command = split(remote_command)
    42. 

  42. 	>>> remote_command
    43. 

  43. 	['ssh', 'home', "ls -l 'somefile; rm -rf ~'"]
    44. 

  44. 	>>> command = split(remote_command[-1])
    45. 

  45. 	>>> command
    46. 

  46. 	['ls', '-l', 'somefile; rm -rf ~']
    47. 

  47. 

  48. 

  49. Usage
    50. 

  50. -----
    51. 

  51. 

  52. Include ``shellescape`` in your project setup.py file ``install_requires`` dependency definition list:
    53. 

  53. 

  54. .. code-block:: python
    55. 

  55. 

  56. 	setup(
    57. 

  57. 	    ...
    58. 

  58. 	    install_requires=['shellescape'],
    59. 

  59. 	    ...
    60. 

  60. 	)
    61. 

  61. 

  62. 

  63. Then import the ``quote`` function into your module(s) and use it as needed:
    64. 

  64. 

  65. .. code-block:: python
    66. 

  66. 

  67. 	#!/usr/bin/env python
    68. 

  68. 	# -*- coding: utf-8 -*-
    69. 

  69. 

  70. 	from shellescape import quote
    71. 

  71. 

  72. 	filename = "somefile; rm -rf ~"
    73. 

  73. 	escaped_shell_command = 'ls -l {}'.format(quote(filename))
    74. 

  74. 

  75. 

  76. Issue Reporting
    77. 

  77. ---------------
    78. 

  78. 

  79. Issue reporting is available on the `GitHub repository <https://github.com/chrissimpkins/shellescape/issues>`_
    80. 

  80. 

  81. 

  82. 

  83.