7 lines
497 B
Plaintext
7 lines
497 B
Plaintext
== Recommended Secure Coding Practices
|
|
|
|
https://www.owasp.org/index.php/Input_Validation_Cheat_Sheet[Sanitize] all command line arguments before using them.
|
|
|
|
|
|
Any user or application can list running processes and see the command line arguments they were started with. There are safer ways of providing sensitive information to an application than exposing them in the command line. It is common to write them on the process' standard input, or give the path to a file containing the information.
|