From 503556fb96fa9f14224c2ac769eb7bf86c17fda7 Mon Sep 17 00:00:00 2001
From: Marcello Lamonaca <marcello@lamonaca.eu>
Date: Tue, 1 Nov 2022 23:25:46 +0100
Subject: [PATCH] feat(bash): add script hardening notes

---
 docs/bash/scripting.md | 13 +++++++++++++
 1 file changed, 13 insertions(+)

diff --git a/docs/bash/scripting.md b/docs/bash/scripting.md
index 5793dd1..a9667b1 100644
--- a/docs/bash/scripting.md
+++ b/docs/bash/scripting.md
@@ -258,3 +258,16 @@ for var in iterable ; do
     # command here
 done
 ```
+
+## Script Hardening
+
+```sh
+set -o errexit  # exit on error
+set -o nounset  # fail on unset variable (bypass with ${VAR:-})
+set -o pipefail  # file entire pipeline if one step fails
+
+# hook to enable tracing
+if [[ "${TRACE-0}" == "1" ]]; then
+    set -o xtrace
+fi
+```