B
84/100 First Seen
Feb 19, 2026
Last Scanned
Feb 19, 2026
Findings
2
Score
84/100
MEDIUM 2
Findings (2)
MEDIUM
Dynamic code evaluation
L893 Detects eval() or exec() used for dynamic code execution
exec (P FIX
Replace eval()/exec() with a safer alternative such as json.loads(), ast.literal_eval(), or a purpose-built parser.
FP?
Likely FP if the matched text contains 'exec' as part of a word (e.g., 'execute', 'execution') rather than an actual eval() or exec() call.
MEDIUM
Dynamic code evaluation
L902 Detects eval() or exec() used for dynamic code execution
exec (P FIX
Replace eval()/exec() with a safer alternative such as json.loads(), ast.literal_eval(), or a purpose-built parser.
FP?
Likely FP if the matched text contains 'exec' as part of a word (e.g., 'execute', 'execution') rather than an actual eval() or exec() call.