Skip to content

refactor: replace eval with ShadowRealm for safe expression evaluation #103

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
mattapperson merged 2 commits into from
Dec 3, 2025
Merged

refactor: replace eval with ShadowRealm for safe expression evaluation #103

Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
2987e7f
refactor: replace eval with ShadowRealm for safe expression evaluation
devin-ai-integration[bot] Dec 3, 2025
099e569
fix: address PR feedback - make ShadowRealm usage correct
devin-ai-integration[bot] Dec 3, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
48 changes: 45 additions & 3 deletions examples/tools-example.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -23,6 +23,14 @@ import * as dotenv from 'dotenv';
import { z } from 'zod/v4';
import { OpenRouter, ToolType } from '../src/index.js';

// Type declaration for ShadowRealm (TC39 Stage 3 proposal)
// See: https://tc39.es/proposal-shadowrealm/
declare class ShadowRealm {
constructor();
evaluate(sourceText: string): unknown;
importValue(specifier: string, bindingName: string): Promise<unknown>;
}

dotenv.config();

const client = new OpenRouter({
Expand Down Expand Up @@ -163,6 +171,41 @@ async function generatorToolExample() {
const _message = await response.getMessage();
}

/**
* Safely evaluate a math expression using ShadowRealm
*
* ShadowRealm provides a secure, isolated JavaScript execution environment
* that prevents access to the host realm's globals (no access to DOM, fetch,
* filesystem, etc.). Combined with input validation, this makes it safe for
* evaluating untrusted math expressions.
*
* Note: ShadowRealm isolates from host APIs but does not prevent DoS vectors
* like infinite loops. For production use, consider additional safeguards.
*
* Browser support: Chrome 124+, Edge 124+, Firefox 128+, Safari 18+
* Node.js support: Available behind --experimental-shadow-realm flag (v19+)
* See: https://tc39.es/proposal-shadowrealm/
*/
function safeEvaluateMath(expression: string): number {
// Only allow digits, whitespace, basic operators, decimal point, and parentheses
if (!/^[\d\s+\-*/.()]+$/.test(expression)) {
throw new Error('Expression contains invalid characters');
}

// ShadowRealm creates a separate realm with its own global object, preventing
// access to the host environment's APIs (no DOM, no Node.js APIs, no fetch, etc.)
const realm = new ShadowRealm();
Copy link

Copilot AI Dec 3, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

TypeScript may not have built-in type definitions for ShadowRealm since it's still a Stage 3 proposal. Consider adding a type declaration at the top of the file to avoid potential TypeScript errors:

// Type declaration for ShadowRealm (TC39 Stage 3 proposal)
declare class ShadowRealm {
  constructor();
  evaluate(sourceText: string): any;
  importValue(specifier: string, bindingName: string): Promise<any>;
}

Copilot uses AI. Check for mistakes.

// The expression is evaluated in complete isolation
const result = realm.evaluate(expression);

if (typeof result !== 'number' || !Number.isFinite(result)) {
throw new Error('Expression did not evaluate to a finite number');
}

return result;
}

/**
* Example 3: Manual Tool Execution
* Define a tool without execute function for manual handling
Expand Down Expand Up @@ -203,10 +246,9 @@ async function manualToolExample() {
}
).expression;

// In a real app, you would safely evaluate this
// For demo purposes only - don't use eval in production!
// Safely evaluate the math expression using ShadowRealm
try {
const _result = eval(expression);
const _result = safeEvaluateMath(expression);
} catch (_error) {}
}
}
Expand Down