Issue #14616: Mention shlex.quote in subprocess docs.

asvetlov · asvetlov · commit c2415eb7e6cc · 2012-10-28T11:42:26.000+02:00
Patch by Chris Rebert.
diff --git a/Doc/library/subprocess.rst b/Doc/library/subprocess.rst
@@ -341,6 +341,10 @@ default values. The arguments that are most commonly needed are:
       from this vulnerability; see the Note in the :class:`Popen` constructor
       documentation for helpful hints in getting ``shell=False`` to work.
 
+      When using ``shell=True``, :func:`shlex.quote` can be used to properly
+      escape whitespace and shell metacharacters in strings that are going to
+      be used to construct shell commands.
+
 These options, along with all of the other options, are described in more
 detail in the :class:`Popen` constructor documentation.
 
