Be Careful When Using exec() or eval() in Python

Показать описание

In this video, we learn why using exec or eval in Python is risky and when you should avoid it.

◾◾◾◾◾◾◾◾◾◾◾◾◾◾◾◾◾
📚 Programming Books & Merch 📚

🌐 Social Media & Contact 🌐

Рекомендации по теме

Комментарии

Substituting strings into program code is always going to be fraught. This is true of exec() and eval() in Python, it’s true of ♯define in C, and so on and so on.

This is why Python has explicit introspection facilities like getattr()/setattr()/dir() -- these were specifically added to the language to reduce the need for exec()/eval(). Also the fact that function and class definitions are not declarations, but are actually assignment statements that take effect at run-time, helps.

Compare LISP, where eval and macro substitution operate on syntactic tokens, not random strings. Generating and manipulating dynamic program code works much better there.

lawrencedoliveiro

Oh, for whatever reason, I always thought that Python didn't have eval(), but I guess I was wrong. ^^

HoarfrostTrickle

"eval" sounds almost like "evil"! 😦
Is this some sort of *_forbidden_* function?

kotface

why didnt the value of variable say "MYSECRET_PASSWORD"? we made a new variable with the same name so should it be overwritten?

clippy

make your videos sound louder...
Thanks

gutibaba

In 18 years using Python profesionally (about million lines written), i never used exec or eval. ever.
could it be useful? yes. Is it tho? no.

movaxh

I'm not python user so I don't care with this->video

ronaldweasly

Actually have a question about this or something similar:
Is it possible to pass attributes and methods as arbitrary arguments.
eg: Python
in dt.datetime.today()
can I relpace 'datetime' or 'today()' with an argument after the period.
like: dt.arg.today(), dt.datetime.arg

with eval/exec it's possible but very unsafe
eval(f"dt.{arg}.today()")

chriskathumbi

Be Careful When Using exec() or eval() in Python

Be Careful When Using exec() or eval() in Python

Be careful when using exec or eval in python

Exec() VS Eval() Explained In Python Tutorial 2023

Exec - Python programming tutorial

Python exec() — A Hacker’s Guide to A Dangerous Function

Why Eval And Exec Are The WORST Python Functions [Tech Rants]

What does the EXEC function do?? #python

Python built-in functions: exec()

Python's Exec Function Explained In ONLY 25 Seconds #python #programming #coding

Learn to use 'exec' function in python #shorts #viral

PG - A Quick Story Of Security Pitfalls With Exec Commands In Software Integrations

How to execute a string containing Python code in Python exec()

Why INSERT/EXEC Causes Weird Blocking In SQL Server

Be careful what you execute

How to use Python Built in Function exec

Python Built-in Function exec ()

be careful in your back someone might execute you in cod war zone or codm #phonk #cod #limeking822

How Can I Correctly Use Java's Runtime.exec() to Execute a Pipe Command in Linux?

How to Import Libraries in Python's exec() Function?

Mastering Python's Exec Function: Unlock the Power of Dynamic Code Execution 💻💻

Be careful what you say, angels are waiting to execute your utterances

Completing a code sketch (exec and eval) [PythonLiveLessons #1]

EASIEST A EXEC SMOKE | Mirage #shorts #cs2

Trump is inheriting an economy with ‘momentum,’ BlackRock exec says