How can I sandbox Python in pure Python?

This is really non-trivial.

There are two ways to sandbox Python. One is to create a restricted environment (i.e., very few globals etc.) and exec your code inside this environment. This is what Messa is suggesting. It’s nice but there are lots of ways to break out of the sandbox and create trouble. There was a thread about this on Python-dev a year ago or so in which people did things from catching exceptions and poking at internal state to break out to byte code manipulation. This is the way to go if you want a complete language.

The other way is to parse the code and then use the ast module to kick out constructs you don’t want (e.g. import statements, function calls etc.) and then to compile the rest. This is the way to go if you want to use Python as a config language etc.

Another way (which might not work for you since you’re using GAE), is the PyPy sandbox. While I haven’t used it myself, word on the intertubes is that it’s the only real sandboxed Python out there.

Based on your description of the requirements (The requirements are support for variables, basic conditionals and function calls (not definitions)) , you might want to evaluate approach 2 and kick out everything else from the code. It’s a little tricky but doable.

Related Posts:

  1. Python script header
  2. In a Bash script, how can I exit the entire script if a certain condition occurs?
  3. Meaning of $? (dollar question mark) in shell scripts
  4. Difference between a script and a program?
  5. Purpose of #!/usr/bin/python3 shebang
  6. Python Login Script; Usernames and Passwords in a separate file
  7. Why use Chef/Puppet over shell scripts?
  8. How can I reverse a list in Python?
  9. How to use filter, map, and reduce in Python 3
  10. What does enumerate() mean?
  11. Does Python have a ternary conditional operator?
  12. What is the difference between Python’s list methods append and extend?
  13. Iterating over dictionaries using ‘for’ loops
  14. how to sort pandas dataframe from one column
  15. Understanding slice notation
  16. How do I sort a dictionary by value?
  17. How do I sort a dictionary by value?
  18. sklearn error ValueError: Input contains NaN, infinity or a value too large for dtype(‘float64’)
  19. Limiting floats to two decimal points
  20. Updating a dictionary in python
  21. anaconda update all possible packages?
  22. How to replace NaN values by Zeroes in a column of a Pandas Dataframe?
  23. TypeError: cannot perform reduce with flexible type
  24. Python regex AttributeError: ‘NoneType’ object has no attribute ‘group’
  25. syntaxerror: “unexpected character after line continuation character in python” math
  26. ValueError : I/O operation on closed file
  27. How to set environment variables in Python?
  28. I keep getting this error for my simple python program: “TypeError: ‘float’ object cannot be interpreted as an integer”
  29. Numpy std calculation: TypeError: cannot perform reduce with flexible type
  30. Regex: AttributeError: ‘NoneType’ object has no attribute ‘groups’
  31. How to mkdir only if a directory does not already exist?
  32. What does “\r” do in the following script?
  33. How can I remove a key from a Python dictionary?
  34. Matplotlib automatic legend outside plot
  35. Syntax behind sorted(key=lambda: …)
  36. convert nan value to zero
  37. How to install pip3 on Windows?
  38. How can I declare and use Boolean variables in a shell script?
  39. Spyder Python “object arrays are currently not supported”
  40. Python try-else
  41. How to compare two dates?
  42. Python circular importing?
  43. Is there a difference between `continue` and `pass` in a for loop in python?
  44. Create own colormap using matplotlib and plot color scale
  45. n-grams in python, four, five, six grams?
  46. The difference between ‘+=’ and ‘=+’?
  47. How to fix “Attempted relative import in non-package” even with __init__.py
  48. Sorting a set of values
  49. Git Bash won’t run my python files?
  50. Can only use .dt accessor with datetimelike values
  51. Convert XML to CSV file
  52. How to install pytorch in windows?
  53. Python TypeError must be str not int
  54. “Unicode Error “unicodeescape” codec can’t decode bytes… Cannot open text files in Python 3
  55. If Python is interpreted, what are .pyc files?
  56. Pandas join issue: columns overlap but no suffix specified
  57. How to downgrade python from 3.7 to 3.6
  58. How to turn on line numbers in IDLE?
  59. OpenCV NoneType object has no attribute shape
  60. How to use an image for the background in tkinter?
  61. Python locale error: unsupported locale setting
  62. What is the $? (dollar question mark) variable in shell scripting?
  63. sklearn Logistic Regression “ValueError: Found array with dim 3. Estimator expected <= 2."
  64. Sqlite3, OperationalError: unable to open database file
  65. Numpy float64 vs Python float
  66. ImportError: libGL.so.1: cannot open shared object file: No such file or directory
  67. Python List object attribute ‘append’ is read-only
  68. Infinite for loops possible in Python?
  69. check if a file is open in Python
  70. RuntimeError: module compiled against API version a but this version of numpy is 9
  71. Not able to pip install pickle in python 3.6
  72. How to print Unicode character in Python?
  73. Coalesce values from 2 columns into a single column in a pandas dataframe
  74. Unknown format code ‘f’ for object of type ‘str’- Folium
  75. Pyinstaller setting icons don’t change
  76. No module named ‘tqdm’
  77. Compute a confidence interval from sample data
  78. Running python script inside ipython
  79. Can’t get Python to import from a different folder
  80. How to crop an image in OpenCV using Python
  81. convert csv file to list of dictionaries
  82. How can I find script’s directory?
  83. Porting Perl to Python
  84. Find object in list that has attribute equal to some value (that meets any condition)
  85. What is the purpose of the single underscore “_” variable in Python?
  86. Must have equal len keys and value when setting with an iterable
  87. print(__doc__) in Python 3 script
  88. Convert a 1D array to a 2D array in numpy
  89. How to print a linebreak in a python function?
  90. Pandas dataframe groupby plot
  91. Download Returned Zip file from URL
  92. Python 3 TypeError: must be str, not bytes with sys.stdout.write()
  93. Cannot concatenate ‘str’ and ‘float’ objects?
  94. Python Text Menu Infinite Loop
  95. Install pip for python 3.5
  96. How do I represent and work with n-bit vectors in Python?
  97. How to repeat individual characters in strings in Python
  98. ValueError: Cannot set a frame with no defined index and a value that cannot be converted to a Series
  99. SMTP AUTH extension not supported by server
  100. How to install PyQt4 on Windows using pip?

Leave a Comment