SRA reads extraction command is a single string rather than an array of strings

[MrCreosote]

That makes user attacks possible as subprocess can't quote arguments correctly.

kb_uploadmethods/lib/kb_uploadmethods/Utils/ImportSRAUtil.py

Lines 60 to 61 in 86bf252

	command = self.SRA_TOOLKIT_PATH + ' --split-3 -T -O '
	command += tmp_dir + ' ' + scratch_sra_file_path