Add latest changes from gitlab-org/gitlab@master

author: GitLab Bot <gitlab-bot@gitlab.com> 2022-11-16 18:11:26 +0000
committer: GitLab Bot <gitlab-bot@gitlab.com> 2022-11-16 18:11:26 +0000
commit: 8fa0c53e26c947ac647b8067fde3e9673b77b1a6 (patch)
tree: da32e7224125973e9e87d3856fb7e672ff41c8b1 /doc/development/shell_commands.md
parent: 0552020767452da44de2bf5424096f2cb2ea6bf5 (diff)
download: gitlab-ce-8fa0c53e26c947ac647b8067fde3e9673b77b1a6.tar.gz
1 files changed, 2 insertions, 0 deletions
diff --git a/doc/development/shell_commands.md b/doc/development/shell_commands.md
index 3935e98199a..d78a005d76b 100644
--- a/doc/development/shell_commands.md
+++ b/doc/development/shell_commands.md
@@ -71,6 +71,8 @@ FileUtils.touch myfile
 
 This coding style could have prevented CVE-2013-4546.
 
+See also <https://gitlab.com/gitlab-org/gitlab/-/merge_requests/93030>, and <https://starlabs.sg/blog/2022/07-gitlab-project-import-rce-analysis-cve-2022-2185/> for another example.
+
 ## Separate options from arguments with --
 
 Make the difference between options and arguments clear to the argument parsers of system commands with `--`. This is supported by many but not all Unix commands.
author	GitLab Bot <gitlab-bot@gitlab.com>	2022-11-16 18:11:26 +0000
committer	GitLab Bot <gitlab-bot@gitlab.com>	2022-11-16 18:11:26 +0000
commit	8fa0c53e26c947ac647b8067fde3e9673b77b1a6 (patch)
tree	da32e7224125973e9e87d3856fb7e672ff41c8b1 /doc/development/shell_commands.md
parent	0552020767452da44de2bf5424096f2cb2ea6bf5 (diff)
download	gitlab-ce-8fa0c53e26c947ac647b8067fde3e9673b77b1a6.tar.gz