Tool for safe (or less safe) evaluation of strings as math expressions

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for molsonkiko from gravatar.com molsonkiko

Unverified details

These details have not been verified by PyPI
Project links
GitHub Statistics

View statistics for this project via Libraries.io, or by using our public dataset on Google BigQuery

Meta

License: MIT License (MIT/X)

Author: Mark Johnston Olson

Tags math, safe eval tool

Requires: Python >=3.6

Classifiers

Project description

math_eval

Safe evaluation of strings as math expressions

Features

  • Written entirely in Python.
  • Read strings representing math expressions or functions of any number of variables, and return a scalar or function as appropriate.
  • Supports all logical and arithmetic operators, as well as arbitrary functions of one or two variables.
  • Easy to add new functions of one or two variables.
  • safe_compute adds an extra layer of safety by creating functions that refuse non-numeric inputs.
  • Equation class that can be extended independently of compute() and safe_compute().

How to use

  • Install Python 3.6 or newer.

  • Install

    # or PyPI
pip install math_eval

  • Use in situations where you need safe evaluation of strings as math expressions

    >>> from math_eval import compute, safe_compute
>>> fun = safe_compute("x*y")
>>> fun('a', 3)
Traceback (most recent call last):
...
ValueError: Functions produced by compute() with safe = True do not accept non-numeric arguments.
>>> fun(3.4, 3)
10.2
>>> fun2 = compute("str(z) + x*y")
>>> fun2('a', 3, 3.5)
'3.5aaa'
>>> print(fun2.__doc__)
str(z) + x*y
Args are positional-only in the order ['x', 'y', 'z'].
>>> compute("(3*4.5**2 >= 17) | 1/-5 == 3")
True

WARNING safe_compute() is not safe if arbitrary ufunctions are added, and compute() is probably unsafe in countless ways I haven't thought of as it is.

For instance, if the chr and eval ufunctions were introduced, even safe_compute() could be used to evaluate artibrary Python expressions by translating integers into strings, and evaluating those strings with the normal Python interpreter.

I (Mark J. Olson) am not knowledgeable about computer security, so think carefully about possible workarounds for safe_compute's safety features before deploying it in a safety-sensitive setting.

Contributing

Be sure to read the [contribution guidelines]

(https://github.com/molsonkiko/math_eval/blob/main/CONTRIBUTING.md).

More information

TODO: add something to show test coverage of code (Coverage URL does not exist)

Coverage

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for molsonkiko from gravatar.com molsonkiko

Unverified details

These details have not been verified by PyPI
Project links
GitHub Statistics

View statistics for this project via Libraries.io, or by using our public dataset on Google BigQuery

Meta

License: MIT License (MIT/X)

Author: Mark Johnston Olson

Tags math, safe eval tool

Requires: Python >=3.6

Classifiers

Release history Release notifications | RSS feed

This version

0.2.4

0.2.3

0.2.1

0.2.0

0.1.2

0.1.0 yanked

Reason this release was yanked:

need to repackage

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

math_eval-0.2.4.tar.gz (23.5 kB view hashes)

Uploaded Source

Built Distribution

math_eval-0.2.4-py3-none-any.whl (22.8 kB view hashes)

Uploaded Python 3

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page