Suggestion: Refactor subprocess calls to use shell=False

## Suggestion

While working on PR #121, Sourcery-AI flagged the use of `shell=True` in subprocess calls throughout the codebase. This is a common pattern in NetworkMgr, but using `shell=False` with argument lists is generally considered safer.

## Current Pattern

```python
run(f'ifconfig {netcard} inet6 {inet6} prefixlen {prefixlen}', shell=True)
```

## Proposed Pattern

```python
run(['ifconfig', netcard, 'inet6', inet6, 'prefixlen', prefixlen])
```

## Scope

This affects approximately 50 locations in `net_api.py` and `configuration.py`.

## Benefits

- Eliminates potential command injection vectors
- More explicit argument handling
- Follows Python security best practices

## Considerations

- Commands with shell features (pipes, redirects like `2>/dev/null`) would need alternative handling
- Requires thorough testing across all network configurations
- Low priority since inputs come from trusted sources (GUI, system)

This is just a suggestion for future consideration - not urgent. Happy to help with a PR if desired.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Suggestion: Refactor subprocess calls to use shell=False #122

Suggestion

Current Pattern

Proposed Pattern

Scope

Benefits

Considerations

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Uh oh!

Suggestion: Refactor subprocess calls to use shell=False #122

Description

Suggestion

Current Pattern

Proposed Pattern

Scope

Benefits

Considerations

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions