From 5b531f0b04dd779f77f61d558e6e17876058174a Mon Sep 17 00:00:00 2001 From: koalaman Date: Thu, 23 Nov 2017 10:25:37 -0800 Subject: [PATCH] Updated SC2086 (markdown) --- SC2086.md | 9 +++++++++ 1 file changed, 9 insertions(+) diff --git a/SC2086.md b/SC2086.md index 97936d5..9a3042d 100644 --- a/SC2086.md +++ b/SC2086.md @@ -83,6 +83,15 @@ This is better than an unquoted value because the alternative value can be prope --- +Here are two common cases where this warning seems unnecessary but may still be beneficial: + +``` +cmd <<< $var # Requires quoting on Bash 3 (but not 4+) +: ${var=default} # Should be quoted to avoid DoS when `var='*/*/*/*/*/*` +``` + +--- + As always, this warning can be [[ignore]]d on a case-by-case basis. this is especially relevant when BASH many not be available for the array work around.