In [1]:
import ast
import builtins

def allowed_node(node):
    if isinstance(node, (ast.Import, ast.ImportFrom)):
        raise ValueError("Imports are not allowed")
    if isinstance(node, ast.Call) and isinstance(node.func, ast.Name) and node.func.id in insecure_functions:
        raise ValueError(f"Function '{node.func.id}' is not allowed")

def analyze_ast(node):
    if isinstance(node, ast.AST):
        allowed_node(node)
        for child in ast.iter_child_nodes(node):
            analyze_ast(child)

def secure_exec(code, custom_globals=None):
    if custom_globals is None:
        custom_globals = {}

    safe_builtins = {name: getattr(builtins, name) for name in allowed_builtins}
    custom_globals["__builtins__"] = safe_builtins

    tree = ast.parse(code)
    analyze_ast(tree)

    exec(compile(tree, "<ast>", "exec"), custom_globals)

def secure_eval(expr, custom_globals=None):
    if custom_globals is None:
        custom_globals = {}

    safe_builtins = {name: getattr(builtins, name) for name in allowed_builtins}
    custom_globals["__builtins__"] = safe_builtins

    tree = ast.parse(expr, mode="eval")
    analyze_ast(tree)

    return eval(compile(tree, "<ast>", "eval"), custom_globals)

allowed_builtins = {
    "abs",
    "bool",
    "callable",
    "chr",
    "complex",
    "divmod",
    "float",
    "hex",
    "int",
    "isinstance",
    "len",
    "max",
    "min",
    "oct",
    "ord",
    "pow",
    "range",
    "repr",
    "round",
    "sorted",
    "str",
    "sum",
    "tuple",
    "type",
    "zip",
}

insecure_functions = {
    "open",
    "exec",
    "eval",
    "compile",
    "globals",
    "locals",
    "vars",
    "dir",
    "importlib",
}

In [11]:
import ast
import builtins

def allowed_node(node, allowed_imports):
    if isinstance(node, (ast.Import, ast.ImportFrom)):
        for alias in node.names:
            if alias.name not in allowed_imports:
                raise ValueError(f"Importing '{alias.name}' is not allowed")
    if isinstance(node, ast.Call) and isinstance(node.func, ast.Name) and node.func.id in insecure_functions:
        raise ValueError(f"Function '{node.func.id}' is not allowed")

def analyze_ast(node, allowed_imports):
    if isinstance(node, ast.AST):
        allowed_node(node, allowed_imports)
        for child in ast.iter_child_nodes(node):
            analyze_ast(child, allowed_imports)

def secure_exec(code, custom_globals=None):
    if custom_globals is None:
        custom_globals = {}

    safe_builtins = {name: getattr(builtins, name) for name in allowed_builtins}
    custom_globals["__builtins__"] = safe_builtins

    tree = ast.parse(code)
    analyze_ast(tree, allowed_imports)

    exec(compile(tree, "<ast>", "exec"), custom_globals)

def secure_eval(expr, custom_globals=None):
    if custom_globals is None:
        custom_globals = {}

    safe_builtins = {name: getattr(builtins, name) for name in allowed_builtins}
    custom_globals["__builtins__"] = safe_builtins

    tree = ast.parse(expr, mode="eval")
    analyze_ast(tree, allowed_imports)

    return eval(compile(tree, "<ast>", "eval"), custom_globals)

allowed_builtins = {
    "abs",
    "bool",
    "callable",
    "chr",
    "complex",
    "divmod",
    "float",
    "hex",
    "int",
    "isinstance",
    "len",
    "max",
    "min",
    "oct",
    "ord",
    "pow",
    "range",
    "repr",
    "round",
    "sorted",
    "str",
    "sum",
    "tuple",
    "type",
    "zip",
}

insecure_functions = {
    "open",
    "exec",
    "eval",
    "compile",
    "globals",
    "locals",
    "vars",
    "dir",
    "importlib",
}

allowed_imports = {
    "pandas",
    "streamlit",
    "plotly",
    "numpy",
    "math",
}

In [47]:
import ast
import builtins

def allowed_node(node, allowed_imports):
    if isinstance(node, (ast.Import, ast.ImportFrom)):
        for alias in node.names:
            if alias.name not in allowed_imports:
                raise ValueError(f"Importing '{alias.name}' is not allowed")
    if isinstance(node, ast.Call) and isinstance(node.func, ast.Name) and node.func.id in insecure_functions:
        raise ValueError(f"Function '{node.func.id}' is not allowed")

def analyze_ast(node, allowed_imports, max_depth, current_depth=0):
    if current_depth >= max_depth:
        return

    if isinstance(node, ast.AST):
        allowed_node(node, allowed_imports)
        for child in ast.iter_child_nodes(node):
            analyze_ast(child, allowed_imports, max_depth, current_depth + 1)

def secure_exec(code, custom_globals=None, max_depth=None):
    if custom_globals is None:
        custom_globals = {}
    if max_depth is None:
        max_depth = float("inf")

    safe_builtins = {name: getattr(builtins, name) for name in allowed_builtins}
    custom_globals["__builtins__"] = safe_builtins

    tree = ast.parse(code)
    analyze_ast(tree, allowed_imports, max_depth)

    exec(compile(tree, "<ast>", "exec"), custom_globals)

def secure_eval(expr, custom_globals=None, max_depth=None):
    if custom_globals is None:
        custom_globals = {}
    if max_depth is None:
        max_depth = float("inf")

    safe_builtins = {name: getattr(builtins, name) for name in allowed_builtins}
    custom_globals["__builtins__"] = safe_builtins

    tree = ast.parse(expr, mode="eval")
    analyze_ast(tree, allowed_imports, max_depth)

    return eval(compile(tree, "<ast>", "eval"), custom_globals)

allowed_builtins = {
    "abs",
    "bool",
    "callable",
    "chr",
    "complex",
    "divmod",
    "float",
    "hex",
    "int",
    "isinstance",
    "len",
    "max",
    "min",
    "oct",
    "ord",
    "pow",
    "range",
    "repr",
    "round",
    "sorted",
    "str",
    "sum",
    "tuple",
    "type",
    "zip",
    "__import__",
}

insecure_functions = {
    "open",
    "exec",
    "eval",
    "compile",
    "globals",
    "locals",
    "vars",
    "dir",
    "importlib",
}

allowed_imports = {
    "pandas",
    "streamlit",
    "plotly",
    "plotly.express",
    "numpy",
    "math",
}

In [48]:
custom_globals = {}
code = """
a = 5
b = 7
c = a * b
"""
secure_exec(code, custom_globals)

assert custom_globals["c"] == 35

In [49]:
custom_globals = {"a": 5, "b": 7}
result = secure_eval("a * b", custom_globals)

assert result == 35

In [50]:
code = "import streamlit"
secure_exec(code)

In [53]:
import setup

import pprint
import json
import google.auth
from google.cloud import bigquery
from langchain.chat_models import ChatOpenAI
import streamlit as st
from google.oauth2 import service_account

# from analytics_bot_langchain.agents.agent_toolkits import create_bigquery_agent
# from analytics_bot_langchain.agents.agent_toolkits.bigquery.utils import get_dataset_ids, get_table_ids, get_tables_summary

pp = pprint.PrettyPrinter(indent=4)

In [55]:
credentials = service_account.Credentials.from_service_account_info(st.secrets["GCP_SERVICE_ACCOUNT"])
client = bigquery.Client(credentials=credentials)

FileNotFoundError: No secrets files found. Valid paths for a secrets.toml file are: /Users/bscholtz/.streamlit/secrets.toml, /Users/bscholtz/workspace/CADLabs/nftfi-agi-streamlit/notebooks/.streamlit/secrets.toml

In [51]:
code = """
import plotly.express as px
query = '''
SELECT *
FROM `psychic-medley-383515.dune_dataset.nft_lending_aggregated_borrow`
'''
df = bigquery_client.query(query).to_dataframe()
fig1 = px.line(df, x='dt', y='total_borrow_volume', title='Total Borrow Volume Over Time')
fig2 = px.bar(df, x='dt', y='bend_borrow_volume', title='Bend Borrow Volume Over Time')
fig3 = px.scatter(df, x='dt', y='nftfi_borrow_volume', title='NFTFI Borrow Volume Over Time')
"""
secure_exec(code, max_depth=2)

NameError: name 'bigquery_client' is not defined

In [29]:
code = "open('test.txt', 'r')"
secure_eval(code, max_depth=1)

NameError: name 'open' is not defined

In [2]:
import unittest

class TestSecureExecAndEval(unittest.TestCase):

    def test_secure_exec_basic(self):
        custom_globals = {}
        code = """
a = 5
b = 7
c = a * b
"""
        secure_exec(code, custom_globals)
        self.assertEqual(custom_globals["c"], 35)

    def test_secure_eval_basic(self):
        custom_globals = {"a": 5, "b": 7}
        result = secure_eval("a * b", custom_globals)
        self.assertEqual(result, 35)

    def test_secure_exec_disallowed_import(self):
        code = "import os"
        with self.assertRaises(ValueError):
            secure_exec(code)

    def test_secure_eval_disallowed_import(self):
        code = "import os"
        with self.assertRaises(ValueError):
            secure_eval(code)

    def test_secure_exec_disallowed_function_call(self):
        code = "open('test.txt', 'r')"
        with self.assertRaises(ValueError):
            secure_exec(code)

    def test_secure_eval_disallowed_function_call(self):
        code = "open('test.txt', 'r')"
        with self.assertRaises(ValueError):
            secure_eval(code)

    def test_secure_exec_allowed_builtins(self):
        custom_globals = {}
        code = """
a = [5, 7, 3]
b = sorted(a)
"""
        secure_exec(code, custom_globals)
        self.assertEqual(custom_globals["b"], [3, 5, 7])

    def test_secure_eval_allowed_builtins(self):
        custom_globals = {"a": [5, 7, 3]}
        result = secure_eval("sorted(a)", custom_globals)
        self.assertEqual(result, [3, 5, 7])

if __name__ == "__main__":
    unittest.main()


usage: ipykernel_launcher.py [-h] [-v] [-q] [--locals] [-f] [-c] [-b]
                             [-k TESTNAMEPATTERNS]
                             [tests ...]
ipykernel_launcher.py: error: argument -f/--failfast: ignored explicit argument '/Users/bscholtz/Library/Jupyter/runtime/kernel-v2-2246mpn4VfG9EkF3.json'


AttributeError: 'tuple' object has no attribute 'tb_frame'