Sindhu S
Reputation: 1012
Passing arguments from shell to embedded Python scripts
I wrote a shell function, intended to be compatible with both zsh and bash:
py () { python -c 'print($1)'; }
but when i use py hello, I get an error from the Python interpreter:
➜ ~ py hello
File "<string>", line 1
print($1)
^
SyntaxError: invalid syntax
What am I doing wrong? Thanks!
Upvotes: 0
Views: 330
Answers (1)
Charles Duffy
Reputation: 295687
Don't use string substitution at all -- that way lies (a cousin of) Bobby Tables. Instead, pass arguments out-of-band:
py() { python -c 'import sys; print sys.argv[1]' "$@"; }
py hello
To demonstrate why the other approach is dangerous:
py() { python -c "print('${1}')"; }
py "hello' + str(__import__('os').system('touch /tmp/broke-your-security')) + '"
When run, this code creates a file /tmp/broke-your-security. Consider what would happen if that command instead involved rm -rf, or curl | sh to pull down a rootkit.
Upvotes: 2
Related Questions
- passing argument to python from shell script
- Passing arguments to shell script from Python
- Passing arguments to Python from Shell Script
- Passing arguments to Python script wrapped in shell script
- Pass arguments to python from bash script
- Executing a shell script with arguments from a python script
- Passing arguments to a Python script from bash
- Passing arguments to a embedded python script in bash
- Passing parameters to shell script from a python program
- Passing arguments to python interpreter from bash script