Using python's eval() vs. ast.literal_eval()

python

eval-vs-literal_eval

security-risks

safe-evaluation

byAlex Kataev·Mar 9, 2025

Opt for ast.literal_eval() to safely evaluate user inputs, particularly when dealing with literals. The eval() function, though versatile, poses security threats given that it can run any Python code. Consider the safer alternative, ast.literal_eval(), using the snippet below:

import ast
safe_result = ast.literal_eval("{'key': 'value', 'list':[1, 2, 3]}")
# Post-evaluation: "{'key': 'value', 'list': [1, 2, 3]}"
# Spoiler: No explosions yet. Our code remains 🧨-free!
print(safe_result)

For data potentially laced with malicious input, dodge code injection by sticking with ast.literal_eval().

Breaking down eval() and ast.literal_eval()

Both eval() and ast.literal_eval() serve as tools to interpret strings as Python expressions. However, eval() poses significant security risks as it can execute any Python code. On the other side of the equation, ast.literal_eval() swings the security baton allowing only Python literals.

Harnessing the power of ast.literal_eval()

Choose ast.literal_eval() as your go-to when handling string inputs that conform to Python's literal syntax. Bonus points for Python 3.7+ users: disallowed computations also stand in the queue of safety measures.

Crafting the perfect eval() alternative

If eval()'s flexibility is a must-have but security concerns loom, concoct a custom safe_eval(). With ast.parse(), you can selectively greenlight certain nodes or operations.

Managing eval(), with risks in mind

When eval() beckons, amp up the security shields. Define necessary globals and locals to cordon off the execution context and thwart unintended code execution.

Drawing the line

Let's think of eval() and ast.literal_eval() as superheroes with different powers:

Box of Code : "[1, 2, {'key': 'value'}]"

eval() : 🔓✨ "I can unlock anything." (But with that power comes potential danger 💣!)
ast.literal_eval() : 🔓🛡️ "I only open those coded safely."

When it's about safety in code (and not just in superhero movies):

| Method             | Security Level |
| ------------------ | -------------- |
| eval()             | Risky (⚠️)     |
| ast.literal_eval() | Safe (🛡️)      |

In essence, while eval() is an all-rounder through its ability to execute every function, but it can also be unpredictable with unknown content. In contrast, with ast.literal_eval(), you're in a safer bubble that only evaluates literals i.e., permitted data.

Navigating through complexities and caveats

Dealing with ast.literal_eval() might be smooth sailing until a more complex expression-based evaluation is required. Likewise, even when forced to use eval(), safety should not be compromised. How then can we steer clear of potential catastrophes?

Safe passage for complex expressions

ast.parse() comes to the rescue when parsing complex expressions. Guard against hazardous code execution by inspecting AST nodes meticulously. Permit only those operations that pass your safety check.

Tightening the safety ropes

In controlled environments (or for your peace of mind), adopt audit hooks or restrict eval() grounds by predefining accessible globals and locals.

Calling the third-party lifeguard

Sometimes reaching out for trusted third-party libraries might be your safest bet. Some provide sandbox contexts to ensure safe evaluations.

Performance vs Security: Choose Wise

For performance pundits, eval() might appear tempting, but remember that it's like juggling knives while blindfolded. A word of advice (or note taped on the knives): don't trade off security for performance when dealing with untrusted data.

explain-codes / Python / Using python's eval() vs. ast.literal_eval()

Linked

Convert a String representation of a Dictionary to a dictionary



How to convert string representation of list to a list



Is there an eval() function in Java?



Most idiomatic way to convert None to empty string?



How to determine a Python variable's type?

