Open marke-apexit opened 1 year ago
If this uses native eval, how is it sandboxed? Does it prevent calling Javascript functions that might not be safe?
The strings in the provided expression are escaped before being evaled. This way only functions you provide can be called.
If this uses native eval, how is it sandboxed? Does it prevent calling Javascript functions that might not be safe?