Class: RuboCop::Cop::Security::Eval

Inherits:
Base
  • Object
show all
Defined in:
lib/rubocop/cop/security/eval.rb

Overview

This cop checks for the use of `Kernel#eval` and `Binding#eval`.

Examples:


# bad

eval(something)
binding.eval(something)

Constant Summary collapse

MSG =
'The use of `eval` is a serious security risk.'
RESTRICT_ON_SEND =
%i[eval].freeze

Instance Attribute Summary

Attributes inherited from Base

#config, #processed_source

Instance Method Summary collapse

Methods inherited from Base

#add_global_offense, #add_offense, autocorrect_incompatible_with, badge, #callbacks_needed, callbacks_needed, #config_to_allow_offenses, #config_to_allow_offenses=, #cop_config, #cop_name, cop_name, department, documentation_url, exclude_from_registry, #excluded_file?, #external_dependency_checksum, inherited, #initialize, joining_forces, lint?, match?, #message, #offenses, #on_investigation_end, #on_new_investigation, #on_other_file, #ready, #relevant_file?, support_autocorrect?, support_multiple_source?, #target_rails_version, #target_ruby_version

Methods included from AutocorrectLogic

#autocorrect?, #autocorrect_enabled?, #autocorrect_requested?, #correctable?, #disable_uncorrectable?, #safe_autocorrect?

Methods included from IgnoredNode

#ignore_node, #ignored_node?, #part_of_ignored_node?

Methods included from Util

silence_warnings

Constructor Details

This class inherits a constructor from RuboCop::Cop::Base

Instance Method Details

#on_send(node) ⇒ Object


22
23
24
25
26
27
28
# File 'lib/rubocop/cop/security/eval.rb', line 22

def on_send(node)
  eval?(node) do |code|
    return if code.dstr_type? && code.recursive_literal?

    add_offense(node.loc.selector)
  end
end