温馨提示:本文翻译自stackoverflow.com,查看原文请点击:python - Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')
python eval code-injection

python - 动态评估代码中指令的不正确中和(“评估注入”)

发布于 2020-03-27 11:42:47

为什么收到评估注射错误?

 if len(sys.argv) > 1:
   eval(sys.argv[1])(logger, *sys.argv[2:])

查看更多

查看更多

提问者
Maryam7
被浏览
24
分享
shaik moeed 2019-07-03 23:09

使用ast.literal_eval代替eval

码:

from ast import literal_eval as eval
if len(sys.argv) > 1:
     eval(sys.argv[1])(logger, *sys.argv[2:])

评估很危险

相关问题

1
如何使用python cut方法创建bin,接受一个参数并返回适当的bin?
2
从具有特定条件的列表列表创建字典
3
根据行值选择列,Python,Pandas
4
在数据框中绘制零和一的计数
5
python函数。
6
在两个DataFrame之间执行大量Pandas查找的最佳方法
7
如何获取Pandas数据透视表中的列数和每列的宽度?
8
在Pandas数据框中分组时缺少所需值时显示一列
9
Python隐藏壁虱但显示壁虱标签
10
获取Entry和checkbutton值Tkinter时出现问题

热门github

1
Suna - Open Source Generalist AI Agent
2
The new Windows Terminal and the original Windows console host, all in the same place! (翻译:新版Windows 终端)
3
A simple, easy to use PowerShell script to remove pre-installed apps from Windows, disable telemetry, remove Bing from Windows search as well as perform various other changes to declutter and improve your Windows experience. This script works for both Windows 10 and Windows 11.
4
AeroSpace is an i3-like tiling window manager for macOS
5
Your AI second brain. Self-hostable. Get answers from the web or your docs. Build custom agents, schedule automations, do deep research. Turn any online or local LLM into your personal, autonomous AI (gpt, claude, gemini, llama, qwen, mistral). Get started - free.
6
Claude can perform Web Search | Exa with MCP (Model Context Protocol)
7
Lightning-fast and Powerful Code Editor written in Rust (翻译:使用Rust编写的快速、强大的代码编辑器)
8
A GUI client for Windows, Linux and macOS, support Xray and sing-box and others (翻译:一个 V2Ray 的 Windows 客户端,支持 Xray 核心和 v2fly 核心)
9
Agent S: an open agentic framework that uses computers like a human
10
Master programming by recreating your favorite technologies from scratch. (翻译:在这个项目中,你能学会如何创造自己的各种工具,引擎,游戏,框架,库......)
11
ChatGPT DAN, Jailbreaks prompt
12
A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more. (翻译:这个存储库是我每天在工作中使用的各种材料和工具的集合。)
13
Burn is a next generation Deep Learning Framework that doesn't compromise on flexibility, efficiency and portability.
14
#1 Locally hosted web application that allows you to perform various operations on PDF files
15
Linux, Jenkins, AWS, SRE, Prometheus, Docker, Python, Ansible, Git, Kubernetes, Terraform, OpenStack, SQL, NoSQL, Azure, GCP, DNS, Elastic, Network, Virtualization. DevOps Interview Questions (翻译:包含Linux、Jenkins、AWS、SRE、Prometheus、Docker、Python、Ansible、Git、Kubernetes、Terraform、OpenStack、SQL、NoSQL、Azure、GCP、DNS、弹性、网络、虚拟化等DevOps 面试问题)