Skip to content

alessio/shellescape

master
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
1 branch 9 tags
Code

Latest commit

@alessio
alessio Merge pull request #14 from alessio/ci-refresh
95f02cf Jan 20, 2023
Merge pull request #14 from alessio/ci-refresh 
Refresh CI and builds
95f02cf

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
.github/workflows
Refresh build options
January 20, 2023 11:37
cmd/escargs
add -a option
November 23, 2020 10:41
.gitignore
add StripUnsafe()
November 24, 2020 21:25
.golangci.yml
Update golangci-lint configuration.
January 20, 2023 11:35
.goreleaser.yml
add goreleaser (#11)
November 25, 2020 09:38
AUTHORS
Add sources and AUTHORS file
February 8, 2016 01:33
CODE_OF_CONDUCT.md
Create CODE_OF_CONDUCT.md
November 13, 2020 23:09
LICENSE
Initial commit
February 8, 2016 01:18
README.md
Update README.md
November 19, 2020 05:38
example_test.go
add testable example
November 25, 2020 10:20
go.mod
Build with go1.14
March 2, 2020 09:45
shellescape.go
add StripUnsafe()
November 24, 2020 21:25
shellescape_test.go
fix no new line at EOF
March 27, 2022 12:13
shellescape Contents of the package Usage The escargs utility

README.md

Build GoDoc sourcegraph codecov Coverage Go Report Card

shellescape

Escape arbitrary strings for safe use as command line arguments.

Contents of the package

This package provides the shellescape.Quote() function that returns a shell-escaped copy of a string. This functionality could be helpful in those cases where it is known that the output of a Go program will be appended to/used in the context of shell programs' command line arguments.

This work was inspired by the Python original package shellescape.

Usage

The following snippet shows a typical unsafe idiom:

package main

import (
	"fmt"
	"os"
)

func main() {
	fmt.Printf("ls -l %s\n", os.Args[1])
}

See in Go Playground

Especially when creating pipeline of commands which might end up being executed by a shell interpreter, it is particularly unsafe to not escape arguments.

shellescape.Quote() comes in handy and to safely escape strings:

package main

import (
        "fmt"
        "os"

        "gopkg.in/alessio/shellescape.v1"
)

func main() {
        fmt.Printf("ls -l %s\n", shellescape.Quote(os.Args[1]))
}

See in Go Playground

The escargs utility

escargs reads lines from the standard input and prints shell-escaped versions. Unlinke xargs, blank lines on the standard input are not discarded.

About

Escape arbitrary strings for use as command line arguments

Topics

shell golang command-line shell-scripting string-escape shellescape

Resources

Readme

License

MIT license

Code of conduct

Code of conduct

Stars

129 stars

Watchers

3 watching

Forks

14 forks

Releases 9

v1.4.1 Latest
Nov 25, 2020
+ 8 releases

Packages

No packages published

Used by 1.5k

  • @simonmicro
  • @bradschwartz
  • @panchadijaya
  • @projectsveltos
  • @shebashio
  • @vst-world
  • @onspaceship
+ 1,456

Contributors 3

Languages