On Wed, Feb 15, 2012 at 6:49 PM, jcbollinger <john.bollin...@stjude.org> wrote: > $v = $::some_unsafe_value > $v_safe = inline_template("<% require 'shellwords' %><%= > shellwords.escape(v) %>")
Cool. It *is* possible. Didn't think to consider using a template... > Overall, however, I suspect that you are probing a rather uncommon use > case. Perhaps. My claim is though, that if exec is provided, so should escaping. Safe use of exec should at least be possible, and in my opinion actively promoted as a best practice. Especially since puppet typically has root access on production servers. But thanks. Now I know it *is* possible. In the words of Larry Wall: "Easy things should be easy, and hard things should be possible." Peter -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-users@googlegroups.com. To unsubscribe from this group, send email to puppet-users+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en.