As `Shell#test` and `Shell#[]` use `send` when transferring to FileTest, private methods etc. can also be called. Therefore, command injection is possible when a crafted value is passed. ```ruby $ irb irb(main):001:0> `ls xy` ls: xy: No such file or directory => "" irb(main):002:0> require 'shell…