Open eco-monk opened 2 years ago
We currently allow eval to be used anywhere in the application (property pane, JS editor etc...).
Although, It has it's niche use-cases as discussed here.
Should we blacklist eval? https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/eval If so, we need to address atleast this use-case mentioned above.
Things to explore: Does Function() serve as a reasonable alternative?
Is there an existing issue for this?
SubTasks
We currently allow eval to be used anywhere in the application (property pane, JS editor etc...).
Although, It has it's niche use-cases as discussed here.
Should we blacklist eval? https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/eval If so, we need to address atleast this use-case mentioned above.