randlet / qatrack / issues / #33 - disallow any dunders in the python snippets — Bitbucket

Issue #33 resolved

Randle Taylor repo owner created an issue 2012-06-06

There is a very nice article explaining some of the dangers with eval here:

http://nedbatchelder.com/blog/201206/eval_really_is_dangerous.html

It looks like removing any dunders from the snippets should give an added measure of protection from Bad Things Happening(TM).

Realistically this is not a major concern at this point as all of our users are internal.

Comments (1)

Randle Taylor reporter
- changed status to resolved
implemented in dev branch
- 2012-06-16T03:39:38+00:00
Log in to comment

Assignee: Randle Taylor

Type: task

Priority: major

Status: resolved

Milestone: –

Version: –

Votes: 0

Watchers: 1

Jira: the preferred issue tracker for Bitbucket. Join the team!