Hugging Face's logo

Spaces:
Duibonduil
/
Final_Assignment_Template5
Sleeping

App Files Community
Final_Assignment_Template5 / tests /test_local_python_executor.py
Duibonduil's picture
Duibonduil
Upload 21 files
9c31777 verified
raw
history blame contribute delete
88.5 kB
# coding=utf-8
# Copyright 2024 HuggingFace Inc.
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
import ast
import types
from contextlib import nullcontext as does_not_raise
from textwrap import dedent
from unittest.mock import patch
import numpy as np
import pandas as pd
import pytest
from smolagents.default_tools import BASE_PYTHON_TOOLS, FinalAnswerTool
from smolagents.local_python_executor import (
 DANGEROUS_FUNCTIONS,
 DANGEROUS_MODULES,
 InterpreterError,
 LocalPythonExecutor,
 PrintContainer,
 check_import_authorized,
 evaluate_boolop,
 evaluate_condition,
 evaluate_delete,
 evaluate_python_code,
 evaluate_subscript,
 fix_final_answer_code,
 get_safe_module,
)
# Fake function we will use as tool
def add_two(x):
 return x + 2
class TestEvaluatePythonCode:
 def assertDictEqualNoPrint(self, dict1, dict2):
 assert {k: v for k, v in dict1.items() if k != "_print_outputs"} == {
 k: v for k, v in dict2.items() if k != "_print_outputs"
 }
def test_evaluate_assign(self):
 code = "x = 3"
 state = {}
 result, _ = evaluate_python_code(code, {}, state=state)
 assert result == 3
 self.assertDictEqualNoPrint(state, {"x": 3, "_operations_count": {"counter": 2}})
code = "x = y"
 state = {"y": 5}
 result, _ = evaluate_python_code(code, {}, state=state)
 # evaluate returns the value of the last assignment.
 assert result == 5
 self.assertDictEqualNoPrint(state, {"x": 5, "y": 5, "_operations_count": {"counter": 2}})
code = "a=1;b=None"
 result, _ = evaluate_python_code(code, {}, state={})
 # evaluate returns the value of the last assignment.
 assert result is None
def test_assignment_cannot_overwrite_tool(self):
 code = "print = '3'"
 with pytest.raises(InterpreterError) as e:
 evaluate_python_code(code, {"print": print}, state={})
 assert "Cannot assign to name 'print': doing this would erase the existing tool!" in str(e)
def test_subscript_call(self):
 code = """def foo(x,y):return x*y\n\ndef boo(y):\n\treturn y**3\nfun = [foo, boo]\nresult_foo = fun[0](4,2)\nresult_boo = fun[1](4)"""
 state = {}
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state=state)
 assert result == 64
 assert state["result_foo"] == 8
 assert state["result_boo"] == 64
def test_evaluate_call(self):
 code = "y = add_two(x)"
 state = {"x": 3}
 result, _ = evaluate_python_code(code, {"add_two": add_two}, state=state)
 assert result == 5
 self.assertDictEqualNoPrint(state, {"x": 3, "y": 5, "_operations_count": {"counter": 3}})
# Should not work without the tool
 with pytest.raises(InterpreterError, match="Forbidden function evaluation: 'add_two'"):
 evaluate_python_code(code, {}, state=state)
def test_evaluate_class_def(self):
 code = dedent('''\
 class MyClass:
 """A class with a value."""
 def __init__(self, value):
 self.value = value
 def get_value(self):
 return self.value
 instance = MyClass(42)
 result = instance.get_value()
 ''')
 state = {}
 result, _ = evaluate_python_code(code, {}, state=state)
 assert result == 42
 assert state["instance"].__doc__ == "A class with a value."
def test_evaluate_class_def_with_assign_attribute_target(self):
 """
 Test evaluate_class_def function when stmt is an instance of ast.Assign with ast.Attribute target.
 """
 code = dedent("""
 class TestSubClass:
 attr1 = 1
 class TestClass:
 data = TestSubClass()
 data.attr1 = "value1"
 data.attr2 = "value2"
 result = (TestClass.data.attr1, TestClass.data.attr2)
 """)
state = {}
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state=state)
assert result == ("value1", "value2")
 assert isinstance(state["TestClass"], type)
 assert state["TestClass"].data.attr1 == "value1"
 assert state["TestClass"].data.attr2 == "value2"
def test_evaluate_constant(self):
 code = "x = 3"
 state = {}
 result, _ = evaluate_python_code(code, {}, state=state)
 assert result == 3
 self.assertDictEqualNoPrint(state, {"x": 3, "_operations_count": {"counter": 2}})
def test_evaluate_dict(self):
 code = "test_dict = {'x': x, 'y': add_two(x)}"
 state = {"x": 3}
 result, _ = evaluate_python_code(code, {"add_two": add_two}, state=state)
 assert result == {"x": 3, "y": 5}
 self.assertDictEqualNoPrint(
 state, {"x": 3, "test_dict": {"x": 3, "y": 5}, "_operations_count": {"counter": 7}}
 )
def test_evaluate_expression(self):
 code = "x = 3\ny = 5"
 state = {}
 result, _ = evaluate_python_code(code, {}, state=state)
 # evaluate returns the value of the last assignment.
 assert result == 5
 self.assertDictEqualNoPrint(state, {"x": 3, "y": 5, "_operations_count": {"counter": 4}})
def test_evaluate_f_string(self):
 code = "text = f'This is x: {x}.'"
 state = {"x": 3}
 result, _ = evaluate_python_code(code, {}, state=state)
 # evaluate returns the value of the last assignment.
 assert result == "This is x: 3."
 self.assertDictEqualNoPrint(state, {"x": 3, "text": "This is x: 3.", "_operations_count": {"counter": 6}})
def test_evaluate_f_string_with_format(self):
 code = "text = f'This is x: {x:.2f}.'"
 state = {"x": 3.336}
 result, _ = evaluate_python_code(code, {}, state=state)
 assert result == "This is x: 3.34."
 self.assertDictEqualNoPrint(
 state, {"x": 3.336, "text": "This is x: 3.34.", "_operations_count": {"counter": 8}}
 )
def test_evaluate_f_string_with_complex_format(self):
 code = "text = f'This is x: {x:>{width}.{precision}f}.'"
 state = {"x": 3.336, "width": 10, "precision": 2}
 result, _ = evaluate_python_code(code, {}, state=state)
 assert result == "This is x: 3.34."
 self.assertDictEqualNoPrint(
 state,
 {
 "x": 3.336,
 "width": 10,
 "precision": 2,
 "text": "This is x: 3.34.",
 "_operations_count": {"counter": 14},
 },
 )
def test_evaluate_if(self):
 code = "if x <= 3:\n y = 2\nelse:\n y = 5"
 state = {"x": 3}
 result, _ = evaluate_python_code(code, {}, state=state)
 # evaluate returns the value of the last assignment.
 assert result == 2
 self.assertDictEqualNoPrint(state, {"x": 3, "y": 2, "_operations_count": {"counter": 6}})
state = {"x": 8}
 result, _ = evaluate_python_code(code, {}, state=state)
 # evaluate returns the value of the last assignment.
 assert result == 5
 self.assertDictEqualNoPrint(state, {"x": 8, "y": 5, "_operations_count": {"counter": 6}})
def test_evaluate_list(self):
 code = "test_list = [x, add_two(x)]"
 state = {"x": 3}
 result, _ = evaluate_python_code(code, {"add_two": add_two}, state=state)
 assert result == [3, 5]
 self.assertDictEqualNoPrint(state, {"x": 3, "test_list": [3, 5], "_operations_count": {"counter": 5}})
def test_evaluate_name(self):
 code = "y = x"
 state = {"x": 3}
 result, _ = evaluate_python_code(code, {}, state=state)
 assert result == 3
 self.assertDictEqualNoPrint(state, {"x": 3, "y": 3, "_operations_count": {"counter": 2}})
def test_evaluate_subscript(self):
 code = "test_list = [x, add_two(x)]\ntest_list[1]"
 state = {"x": 3}
 result, _ = evaluate_python_code(code, {"add_two": add_two}, state=state)
 assert result == 5
 self.assertDictEqualNoPrint(state, {"x": 3, "test_list": [3, 5], "_operations_count": {"counter": 9}})
code = "test_dict = {'x': x, 'y': add_two(x)}\ntest_dict['y']"
 state = {"x": 3}
 result, _ = evaluate_python_code(code, {"add_two": add_two}, state=state)
 assert result == 5
 self.assertDictEqualNoPrint(
 state, {"x": 3, "test_dict": {"x": 3, "y": 5}, "_operations_count": {"counter": 11}}
 )
code = "vendor = {'revenue': 31000, 'rent': 50312}; vendor['ratio'] = round(vendor['revenue'] / vendor['rent'], 2)"
 state = {}
 evaluate_python_code(code, {"min": min, "print": print, "round": round}, state=state)
 assert state["vendor"] == {"revenue": 31000, "rent": 50312, "ratio": 0.62}
def test_subscript_string_with_string_index_raises_appropriate_error(self):
 code = """
search_results = "[{'title': 'Paris, Ville de Paris, France Weather Forecast | AccuWeather', 'href': 'https://www.accuweather.com/en/fr/paris/623/weather-forecast/623', 'body': 'Get the latest weather forecast for Paris, Ville de Paris, France , including hourly, daily, and 10-day outlooks. AccuWeather provides you with reliable and accurate information on temperature ...'}]"
for result in search_results:
 if 'current' in result['title'].lower() or 'temperature' in result['title'].lower():
 current_weather_url = result['href']
 print(current_weather_url)
 break"""
 with pytest.raises(InterpreterError) as e:
 evaluate_python_code(code, BASE_PYTHON_TOOLS, state={})
 assert "You're trying to subscript a string with a string index" in e
def test_evaluate_for(self):
 code = "x = 0\nfor i in range(3):\n x = i"
 state = {}
 result, _ = evaluate_python_code(code, {"range": range}, state=state)
 assert result == 2
 self.assertDictEqualNoPrint(state, {"x": 2, "i": 2, "_operations_count": {"counter": 11}})
def test_evaluate_binop(self):
 code = "y + x"
 state = {"x": 3, "y": 6}
 result, _ = evaluate_python_code(code, {}, state=state)
 assert result == 9
 self.assertDictEqualNoPrint(state, {"x": 3, "y": 6, "_operations_count": {"counter": 4}})
def test_recursive_function(self):
 code = """
def recur_fibo(n):
 if n <= 1:
 return n
 else:
 return(recur_fibo(n-1) + recur_fibo(n-2))
recur_fibo(6)"""
 result, _ = evaluate_python_code(code, {}, state={})
 assert result == 8
def test_max_operations(self):
 # Check that operation counter is not reset in functions
 code = dedent(
 """
 def func(a):
 for j in range(10):
 a += j
 return a
 for i in range(5):
 func(i)
 """
 )
 with patch("smolagents.local_python_executor.MAX_OPERATIONS", 100):
 with pytest.raises(InterpreterError) as exception_info:
 evaluate_python_code(code, {"range": range}, state={})
 assert "Reached the max number of operations" in str(exception_info.value)
def test_operations_count(self):
 # Check that operation counter is not reset in functions
 code = dedent(
 """
 def func():
 return 0
 func()
 """
 )
 state = {}
 evaluate_python_code(code, {"range": range}, state=state)
 assert state["_operations_count"]["counter"] == 5
def test_evaluate_string_methods(self):
 code = "'hello'.replace('h', 'o').split('e')"
 result, _ = evaluate_python_code(code, {}, state={})
 assert result == ["o", "llo"]
def test_evaluate_slicing(self):
 code = "'hello'[1:3][::-1]"
 result, _ = evaluate_python_code(code, {}, state={})
 assert result == "le"
def test_access_attributes(self):
 class A:
 attr = 2
code = "A.attr"
 result, _ = evaluate_python_code(code, {}, state={"A": A})
 assert result == 2
def test_list_comprehension(self):
 code = "sentence = 'THESEAGULL43'\nmeaningful_sentence = '-'.join([char.lower() for char in sentence if char.isalpha()])"
 result, _ = evaluate_python_code(code, {}, state={})
 assert result == "t-h-e-s-e-a-g-u-l-l"
def test_string_indexing(self):
 code = """text_block = [
 "THESE",
 "AGULL"
]
sentence = ""
for block in text_block:
 for col in range(len(text_block[0])):
 sentence += block[col]
 """
 result, _ = evaluate_python_code(code, {"len": len, "range": range}, state={})
 assert result == "THESEAGULL"
def test_tuples(self):
 code = "x = (1, 2, 3)\nx[1]"
 result, _ = evaluate_python_code(code, {}, state={})
 assert result == 2
code = """
digits, i = [1, 2, 3], 1
digits[i], digits[i + 1] = digits[i + 1], digits[i]"""
 evaluate_python_code(code, {"range": range, "print": print, "int": int}, {})
code = """
def calculate_isbn_10_check_digit(number):
 total = sum((10 - i) * int(digit) for i, digit in enumerate(number))
 remainder = total % 11
 check_digit = 11 - remainder
 if check_digit == 10:
 return 'X'
 elif check_digit == 11:
 return '0'
 else:
 return str(check_digit)
# Given 9-digit numbers
numbers = [
 "478225952",
 "643485613",
 "739394228",
 "291726859",
 "875262394",
 "542617795",
 "031810713",
 "957007669",
 "871467426"
]
# Calculate check digits for each number
check_digits = [calculate_isbn_10_check_digit(number) for number in numbers]
print(check_digits)
"""
 state = {}
 evaluate_python_code(
 code,
 {
 "range": range,
 "print": print,
 "sum": sum,
 "enumerate": enumerate,
 "int": int,
 "str": str,
 },
 state,
 )
def test_listcomp(self):
 code = "x = [i for i in range(3)]"
 result, _ = evaluate_python_code(code, {"range": range}, state={})
 assert result == [0, 1, 2]
def test_setcomp(self):
 code = "batman_times = {entry['time'] for entry in [{'time': 10}, {'time': 19}, {'time': 20}]}"
 result, _ = evaluate_python_code(code, {}, state={})
 assert result == {10, 19, 20}
def test_break_continue(self):
 code = "for i in range(10):\n if i == 5:\n break\ni"
 result, _ = evaluate_python_code(code, {"range": range}, state={})
 assert result == 5
code = "for i in range(10):\n if i == 5:\n continue\ni"
 result, _ = evaluate_python_code(code, {"range": range}, state={})
 assert result == 9
def test_call_int(self):
 code = "import math\nstr(math.ceil(149))"
 result, _ = evaluate_python_code(code, {"str": lambda x: str(x)}, state={})
 assert result == "149"
def test_lambda(self):
 code = "f = lambda x: x + 2\nf(3)"
 result, _ = evaluate_python_code(code, {}, state={})
 assert result == 5
def test_dictcomp(self):
 code = "x = {i: i**2 for i in range(3)}"
 result, _ = evaluate_python_code(code, {"range": range}, state={})
 assert result == {0: 0, 1: 1, 2: 4}
code = "{num: name for num, name in {101: 'a', 102: 'b'}.items() if name not in ['a']}"
 result, _ = evaluate_python_code(code, {"print": print}, state={}, authorized_imports=["pandas"])
 assert result == {102: "b"}
code = """
shifts = {'A': ('6:45', '8:00'), 'B': ('10:00', '11:45')}
shift_minutes = {worker: ('a', 'b') for worker, (start, end) in shifts.items()}
"""
 result, _ = evaluate_python_code(code, {}, state={})
 assert result == {"A": ("a", "b"), "B": ("a", "b")}
def test_tuple_assignment(self):
 code = "a, b = 0, 1\nb"
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state={})
 assert result == 1
def test_while(self):
 code = "i = 0\nwhile i < 3:\n i += 1\ni"
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state={})
 assert result == 3
# test infinite loop
 code = "i = 0\nwhile i < 3:\n i -= 1\ni"
 with patch("smolagents.local_python_executor.MAX_WHILE_ITERATIONS", 100):
 with pytest.raises(InterpreterError, match=".*Maximum number of 100 iterations in While loop exceeded"):
 evaluate_python_code(code, BASE_PYTHON_TOOLS, state={})
# test lazy evaluation
 code = dedent(
 """
 house_positions = [0, 7, 10, 15, 18, 22, 22]
 i, n, loc = 0, 7, 30
 while i < n and house_positions[i] <= loc:
 i += 1
 """
 )
 state = {}
 evaluate_python_code(code, BASE_PYTHON_TOOLS, state=state)
def test_generator(self):
 code = "a = [1, 2, 3, 4, 5]; b = (i**2 for i in a); list(b)"
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state={})
 assert result == [1, 4, 9, 16, 25]
def test_boolops(self):
 code = """if (not (a > b and a > c)) or d > e:
 best_city = "Brooklyn"
else:
 best_city = "Manhattan"
 best_city
 """
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state={"a": 1, "b": 2, "c": 3, "d": 4, "e": 5})
 assert result == "Brooklyn"
code = """if d > e and a < b:
 best_city = "Brooklyn"
elif d < e and a < b:
 best_city = "Sacramento"
else:
 best_city = "Manhattan"
 best_city
 """
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state={"a": 1, "b": 2, "c": 3, "d": 4, "e": 5})
 assert result == "Sacramento"
# Short-circuit evaluation:
 # (T and 0) or (T and T) => 0 or True => True
 code = "result = (x > 3 and y) or (z == 10 and not y)\nresult"
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state={"x": 5, "y": 0, "z": 10})
 assert result
# (None or "") or "Found" => "" or "Found" => "Found"
 code = "result = (a or c) or b\nresult"
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state={"a": None, "b": "Found", "c": ""})
 assert result == "Found"
# ("First" and "") or "Third" => "" or "Third" -> "Third"
 code = "result = (a and b) or c\nresult"
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state={"a": "First", "b": "", "c": "Third"})
 assert result == "Third"
def test_if_conditions(self):
 code = """char='a'
if char.isalpha():
 print('2')"""
 state = {}
 evaluate_python_code(code, BASE_PYTHON_TOOLS, state=state)
 assert state["_print_outputs"].value == "2\n"
def test_imports(self):
 code = "import math\nmath.sqrt(4)"
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state={})
 assert result == 2.0
code = "from random import choice, seed\nseed(12)\nchoice(['win', 'lose', 'draw'])"
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state={})
 assert result == "lose"
code = "import time, re\ntime.sleep(0.1)"
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state={})
 assert result is None
code = "from queue import Queue\nq = Queue()\nq.put(1)\nq.get()"
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state={})
 assert result == 1
code = "import itertools\nlist(itertools.islice(range(10), 3))"
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state={})
 assert result == [0, 1, 2]
code = "import re\nre.search('a', 'abc').group()"
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state={})
 assert result == "a"
code = "import stat\nstat.S_ISREG(0o100644)"
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state={})
 assert result
code = "import statistics\nstatistics.mean([1, 2, 3, 4, 4])"
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state={})
 assert result == 2.8
code = "import unicodedata\nunicodedata.name('A')"
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state={})
 assert result == "LATIN CAPITAL LETTER A"
# Test submodules are handled properly, thus not raising error
 code = "import numpy.random as rd\nrng = rd.default_rng(12345)\nrng.random()"
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state={}, authorized_imports=["numpy.random"])
code = "from numpy.random import default_rng as d_rng\nrng = d_rng(12345)\nrng.random()"
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state={}, authorized_imports=["numpy.random"])
def test_additional_imports(self):
 code = "import numpy as np"
 evaluate_python_code(code, authorized_imports=["numpy"], state={})
# Test that allowing 'numpy.*' allows numpy root package and its submodules
 code = "import numpy as np\nnp.random.default_rng(123)\nnp.array([1, 2])"
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state={}, authorized_imports=["numpy.*"])
# Test that allowing 'numpy.*' allows importing a submodule
 code = "import numpy.random as rd\nrd.default_rng(12345)"
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state={}, authorized_imports=["numpy.*"])
code = "import numpy.random as rd"
 evaluate_python_code(code, authorized_imports=["numpy.random"], state={})
 evaluate_python_code(code, authorized_imports=["numpy.*"], state={})
 evaluate_python_code(code, authorized_imports=["*"], state={})
 with pytest.raises(InterpreterError):
 evaluate_python_code(code, authorized_imports=["random"], state={})
with pytest.raises(InterpreterError):
 evaluate_python_code(code, authorized_imports=["numpy.a"], state={})
 with pytest.raises(InterpreterError):
 evaluate_python_code(code, authorized_imports=["numpy.a.*"], state={})
def test_multiple_comparators(self):
 code = "0 <= -1 < 4 and 0 <= -5 < 4"
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state={})
 assert not result
code = "0 <= 1 < 4 and 0 <= -5 < 4"
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state={})
 assert not result
code = "0 <= 4 < 4 and 0 <= 3 < 4"
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state={})
 assert not result
code = "0 <= 3 < 4 and 0 <= 3 < 4"
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state={})
 assert result
def test_print_output(self):
 code = "print('Hello world!')\nprint('Ok no one cares')"
 state = {}
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state=state)
 assert result is None
 assert state["_print_outputs"].value == "Hello world!\nOk no one cares\n"
# Test print in function (state copy)
 code = """
print("1")
def function():
 print("2")
function()"""
 state = {}
 evaluate_python_code(code, {"print": print}, state=state)
 assert state["_print_outputs"].value == "1\n2\n"
# Test print in list comprehension (state copy)
 code = """
print("1")
def function():
 print("2")
[function() for i in range(10)]"""
 state = {}
 evaluate_python_code(code, {"print": print, "range": range}, state=state)
 assert state["_print_outputs"].value == "1\n2\n2\n2\n2\n2\n2\n2\n2\n2\n2\n"
def test_tuple_target_in_iterator(self):
 code = "for a, b in [('Ralf Weikert', 'Austria'), ('Samuel Seungwon Lee', 'South Korea')]:res = a.split()[0]"
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state={})
 assert result == "Samuel"
def test_classes(self):
 code = """
class Animal:
 species = "Generic Animal"
 def __init__(self, name, age):
 self.name = name
 self.age = age
 def sound(self):
 return "The animal makes a sound."
 def __str__(self):
 return f"{self.name}, {self.age} years old"
class Dog(Animal):
 species = "Canine"
 def __init__(self, name, age, breed):
 super().__init__(name, age)
 self.breed = breed
 def sound(self):
 return "The dog barks."
 def __str__(self):
 return f"{self.name}, {self.age} years old, {self.breed}"
class Cat(Animal):
 def sound(self):
 return "The cat meows."
 def __str__(self):
 return f"{self.name}, {self.age} years old, {self.species}"
# Testing multiple instances
dog1 = Dog("Fido", 3, "Labrador")
dog2 = Dog("Buddy", 5, "Golden Retriever")
# Testing method with built-in function
animals = [dog1, dog2, Cat("Whiskers", 2)]
num_animals = len(animals)
# Testing exceptions in methods
class ExceptionTest:
 def method_that_raises(self):
 raise ValueError("An error occurred")
try:
 exc_test = ExceptionTest()
 exc_test.method_that_raises()
except ValueError as e:
 exception_message = str(e)
# Collecting results
dog1_sound = dog1.sound()
dog1_str = str(dog1)
dog2_sound = dog2.sound()
dog2_str = str(dog2)
cat = Cat("Whiskers", 2)
cat_sound = cat.sound()
cat_str = str(cat)
 """
 state = {}
 evaluate_python_code(
 code,
 {"print": print, "len": len, "super": super, "str": str, "sum": sum},
 state=state,
 )
# Assert results
 assert state["dog1_sound"] == "The dog barks."
 assert state["dog1_str"] == "Fido, 3 years old, Labrador"
 assert state["dog2_sound"] == "The dog barks."
 assert state["dog2_str"] == "Buddy, 5 years old, Golden Retriever"
 assert state["cat_sound"] == "The cat meows."
 assert state["cat_str"] == "Whiskers, 2 years old, Generic Animal"
 assert state["num_animals"] == 3
 assert state["exception_message"] == "An error occurred"
def test_variable_args(self):
 code = """
def var_args_method(self, *args, **kwargs):
 return sum(args) + sum(kwargs.values())
var_args_method(1, 2, 3, x=4, y=5)
"""
 state = {}
 result, _ = evaluate_python_code(code, {"sum": sum}, state=state)
 assert result == 15
def test_exceptions(self):
 code = """
def method_that_raises(self):
 raise ValueError("An error occurred")
try:
 method_that_raises()
except ValueError as e:
 exception_message = str(e)
 """
 state = {}
 evaluate_python_code(
 code,
 {"print": print, "len": len, "super": super, "str": str, "sum": sum},
 state=state,
 )
 assert state["exception_message"] == "An error occurred"
def test_print(self):
 code = "print(min([1, 2, 3]))"
 state = {}
 evaluate_python_code(code, {"min": min, "print": print}, state=state)
 assert state["_print_outputs"].value == "1\n"
def test_types_as_objects(self):
 code = "type_a = float(2); type_b = str; type_c = int"
 state = {}
 result, is_final_answer = evaluate_python_code(code, {"float": float, "str": str, "int": int}, state=state)
 # Type objects are not wrapped by safer_func
 assert not hasattr(result, "__wrapped__")
 assert result is int
def test_tuple_id(self):
 code = """
food_items = {"apple": 2, "banana": 3, "orange": 1, "pear": 1}
unique_food_items = [item for item, count in food_item_counts.items() if count == 1]
"""
 state = {}
 result, is_final_answer = evaluate_python_code(code, {}, state=state)
 assert result == ["orange", "pear"]
def test_nonsimple_augassign(self):
 code = """
counts_dict = {'a': 0}
counts_dict['a'] += 1
counts_list = [1, 2, 3]
counts_list += [4, 5, 6]
class Counter:
 def __init__(self):
 self.count = 0
a = Counter()
a.count += 1
"""
 state = {}
 evaluate_python_code(code, {}, state=state)
 assert state["counts_dict"] == {"a": 1}
 assert state["counts_list"] == [1, 2, 3, 4, 5, 6]
 assert state["a"].count == 1
def test_adding_int_to_list_raises_error(self):
 code = """
counts = [1, 2, 3]
counts += 1"""
 with pytest.raises(InterpreterError) as e:
 evaluate_python_code(code, BASE_PYTHON_TOOLS, state={})
 assert "Cannot add non-list value 1 to a list." in str(e)
def test_error_highlights_correct_line_of_code(self):
 code = """a = 1
b = 2
counts = [1, 2, 3]
counts += 1
b += 1"""
 with pytest.raises(InterpreterError) as e:
 evaluate_python_code(code, BASE_PYTHON_TOOLS, state={})
 assert "Code execution failed at line 'counts += 1" in str(e)
def test_error_type_returned_in_function_call(self):
 code = """def error_function():
 raise ValueError("error")
error_function()"""
 with pytest.raises(InterpreterError) as e:
 evaluate_python_code(code)
 assert "error" in str(e)
 assert "ValueError" in str(e)
def test_assert(self):
 code = """
assert 1 == 1
assert 1 == 2
"""
 with pytest.raises(InterpreterError) as e:
 evaluate_python_code(code, BASE_PYTHON_TOOLS, state={})
 assert "1 == 2" in str(e) and "1 == 1" not in str(e)
def test_with_context_manager(self):
 code = """
class SimpleLock:
 def __init__(self):
 self.locked = False
 def __enter__(self):
 self.locked = True
 return self
 def __exit__(self, exc_type, exc_value, traceback):
 self.locked = False
lock = SimpleLock()
with lock as l:
 assert l.locked == True
assert lock.locked == False
 """
 state = {}
 tools = {}
 evaluate_python_code(code, tools, state=state)
def test_default_arg_in_function(self):
 code = """
def f(a, b=333, n=1000):
 return b + n
n = f(1, n=667)
"""
 res, is_final_answer = evaluate_python_code(code, {}, {})
 assert res == 1000
 assert not is_final_answer
def test_set(self):
 code = """
S1 = {'a', 'b', 'c'}
S2 = {'b', 'c', 'd'}
S3 = S1.difference(S2)
S4 = S1.intersection(S2)
"""
 state = {}
 evaluate_python_code(code, {}, state=state)
 assert state["S3"] == {"a"}
 assert state["S4"] == {"b", "c"}
def test_break(self):
 code = """
i = 0
while True:
 i+= 1
 if i==3:
 break
i"""
 result, is_final_answer = evaluate_python_code(code, {"print": print, "round": round}, state={})
 assert result == 3
 assert not is_final_answer
def test_return(self):
 # test early returns
 code = """
def add_one(n, shift):
 if True:
 return n + shift
 return n
add_one(1, 1)
"""
 state = {}
 result, is_final_answer = evaluate_python_code(
 code, {"print": print, "range": range, "ord": ord, "chr": chr}, state=state
 )
 assert result == 2
# test returning None
 code = """
def returns_none(a):
 return
returns_none(1)
"""
 state = {}
 result, is_final_answer = evaluate_python_code(
 code, {"print": print, "range": range, "ord": ord, "chr": chr}, state=state
 )
 assert result is None
def test_nested_for_loop(self):
 code = """
all_res = []
for i in range(10):
 subres = []
 for j in range(i):
 subres.append(j)
 all_res.append(subres)
out = [i for sublist in all_res for i in sublist]
out[:10]
"""
 state = {}
 result, is_final_answer = evaluate_python_code(code, {"print": print, "range": range}, state=state)
 assert result == [0, 0, 1, 0, 1, 2, 0, 1, 2, 3]
def test_pandas(self):
 code = """
import pandas as pd
df = pd.DataFrame.from_dict({'SetCount': ['5', '4', '5'], 'Quantity': [1, 0, -1]})
df['SetCount'] = pd.to_numeric(df['SetCount'], errors='coerce')
parts_with_5_set_count = df[df['SetCount'] == 5.0]
parts_with_5_set_count[['Quantity', 'SetCount']].values[1]
"""
 state = {}
 result, _ = evaluate_python_code(code, {}, state=state, authorized_imports=["pandas"])
 assert np.array_equal(result, [-1, 5])
code = """
import pandas as pd
df = pd.DataFrame.from_dict({"AtomicNumber": [111, 104, 105], "ok": [0, 1, 2]})
# Filter the DataFrame to get only the rows with outdated atomic numbers
filtered_df = df.loc[df['AtomicNumber'].isin([104])]
"""
 result, _ = evaluate_python_code(code, {"print": print}, state={}, authorized_imports=["pandas"])
 assert np.array_equal(result.values[0], [104, 1])
# Test groupby
 code = """import pandas as pd
data = pd.DataFrame.from_dict([
 {"Pclass": 1, "Survived": 1},
 {"Pclass": 2, "Survived": 0},
 {"Pclass": 2, "Survived": 1}
])
survival_rate_by_class = data.groupby('Pclass')['Survived'].mean()
"""
 result, _ = evaluate_python_code(code, {}, state={}, authorized_imports=["pandas"])
 assert result.values[1] == 0.5
# Test loc and iloc
 code = """import pandas as pd
data = pd.DataFrame.from_dict([
 {"Pclass": 1, "Survived": 1},
 {"Pclass": 2, "Survived": 0},
 {"Pclass": 2, "Survived": 1}
])
survival_rate_biased = data.loc[data['Survived']==1]['Survived'].mean()
survival_rate_biased = data.loc[data['Survived']==1]['Survived'].mean()
survival_rate_sorted = data.sort_values(by='Survived', ascending=False).iloc[0]
"""
 result, _ = evaluate_python_code(code, {}, state={}, authorized_imports=["pandas"])
def test_starred(self):
 code = """
from math import radians, sin, cos, sqrt, atan2
def haversine(lat1, lon1, lat2, lon2):
 R = 6371000 # Radius of the Earth in meters
 lat1, lon1, lat2, lon2 = map(radians, [lat1, lon1, lat2, lon2])
 dlat = lat2 - lat1
 dlon = lon2 - lon1
 a = sin(dlat / 2) ** 2 + cos(lat1) * cos(lat2) * sin(dlon / 2) ** 2
 c = 2 * atan2(sqrt(a), sqrt(1 - a))
 distance = R * c
 return distance
coords_geneva = (46.1978, 6.1342)
coords_barcelona = (41.3869, 2.1660)
distance_geneva_barcelona = haversine(*coords_geneva, *coords_barcelona)
"""
 result, _ = evaluate_python_code(code, {"print": print, "map": map}, state={}, authorized_imports=["math"])
 assert round(result, 1) == 622395.4
def test_for(self):
 code = """
shifts = {
 "Worker A": ("6:45 pm", "8:00 pm"),
 "Worker B": ("10:00 am", "11:45 am")
}
shift_intervals = {}
for worker, (start, end) in shifts.items():
 shift_intervals[worker] = end
shift_intervals
"""
 result, _ = evaluate_python_code(code, {"print": print, "map": map}, state={})
 assert result == {"Worker A": "8:00 pm", "Worker B": "11:45 am"}
def test_syntax_error_points_error(self):
 code = "a = ;"
 with pytest.raises(InterpreterError) as e:
 evaluate_python_code(code)
 assert "SyntaxError" in str(e)
 assert " ^" in str(e)
def test_close_matches_subscript(self):
 code = 'capitals = {"Czech Republic": "Prague", "Monaco": "Monaco", "Bhutan": "Thimphu"};capitals["Butan"]'
 with pytest.raises(Exception) as e:
 evaluate_python_code(code)
 assert "Maybe you meant one of these indexes instead" in str(e) and "['Bhutan']" in str(e).replace("\\", "")
def test_dangerous_builtins_calls_are_blocked(self):
 unsafe_code = "import os"
 dangerous_code = f"""
exec = callable.__self__.exec
compile = callable.__self__.compile
exec(compile('{unsafe_code}', 'no filename', 'exec'))
"""
with pytest.raises(InterpreterError):
 evaluate_python_code(unsafe_code, static_tools=BASE_PYTHON_TOOLS)
with pytest.raises(InterpreterError):
 evaluate_python_code(dangerous_code, static_tools=BASE_PYTHON_TOOLS)
def test_final_answer_accepts_kwarg_answer(self):
 code = "final_answer(answer=2)"
 result, _ = evaluate_python_code(code, {"final_answer": (lambda answer: 2 * answer)}, state={})
 assert result == 4
def test_dangerous_builtins_are_callable_if_explicitly_added(self):
 dangerous_code = dedent("""
 eval("1 + 1")
 exec(compile("1 + 1", "no filename", "exec"))
 """)
 evaluate_python_code(
 dangerous_code, static_tools={"compile": compile, "eval": eval, "exec": exec} | BASE_PYTHON_TOOLS
 )
def test_can_import_os_if_explicitly_authorized(self):
 dangerous_code = "import os; os.listdir('./')"
 evaluate_python_code(dangerous_code, authorized_imports=["os"])
def test_can_import_os_if_all_imports_authorized(self):
 dangerous_code = "import os; os.listdir('./')"
 evaluate_python_code(dangerous_code, authorized_imports=["*"])
@pytest.mark.filterwarnings("ignore::DeprecationWarning")
 def test_can_import_scipy_if_explicitly_authorized(self):
 code = "import scipy"
 evaluate_python_code(code, authorized_imports=["scipy"])
@pytest.mark.filterwarnings("ignore::DeprecationWarning")
 def test_can_import_sklearn_if_explicitly_authorized(self):
 code = "import sklearn"
 evaluate_python_code(code, authorized_imports=["sklearn"])
def test_function_def_recovers_source_code(self):
 executor = LocalPythonExecutor([])
executor.send_tools({"final_answer": FinalAnswerTool()})
res, _, _ = executor(
 dedent(
 """
 def target_function():
 return "Hello world"
 final_answer(target_function)
 """
 )
 )
 assert res.__name__ == "target_function"
 assert res.__source__ == "def target_function():\n return 'Hello world'"
def test_evaluate_class_def_with_pass(self):
 code = dedent("""
 class TestClass:
 pass
 instance = TestClass()
 instance.attr = "value"
 result = instance.attr
 """)
 state = {}
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state=state)
 assert result == "value"
def test_evaluate_class_def_with_ann_assign_name(self):
 """
 Test evaluate_class_def function when stmt is an instance of ast.AnnAssign with ast.Name target.
 This test verifies that annotated assignments within a class definition are correctly evaluated.
 """
 code = dedent("""
 class TestClass:
 x: int = 5
 y: str = "test"
 instance = TestClass()
 result = (instance.x, instance.y)
 """)
state = {}
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state=state)
assert result == (5, "test")
 assert isinstance(state["TestClass"], type)
 # Type objects are not wrapped by safer_func
 for value in state["TestClass"].__annotations__.values():
 assert not hasattr(value, "__wrapped__")
 assert state["TestClass"].__annotations__ == {"x": int, "y": str}
 assert state["TestClass"].x == 5
 assert state["TestClass"].y == "test"
 assert isinstance(state["instance"], state["TestClass"])
 assert state["instance"].x == 5
 assert state["instance"].y == "test"
def test_evaluate_class_def_with_ann_assign_attribute(self):
 """
 Test evaluate_class_def function when stmt is an instance of ast.AnnAssign with ast.Attribute target.
 This test ensures that class attributes using attribute notation are correctly handled.
 """
 code = dedent("""
 class TestSubClass:
 attr = 1
 class TestClass:
 data: TestSubClass = TestSubClass()
 data.attr: str = "value"
 result = TestClass.data.attr
 """)
state = {}
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state=state)
assert result == "value"
 assert isinstance(state["TestClass"], type)
 assert state["TestClass"].__annotations__.keys() == {"data"}
 assert isinstance(state["TestClass"].__annotations__["data"], type)
 assert state["TestClass"].__annotations__["data"].__name__ == "TestSubClass"
 assert state["TestClass"].data.attr == "value"
def test_evaluate_class_def_with_ann_assign_subscript(self):
 """
 Test evaluate_class_def function when stmt is an instance of ast.AnnAssign with ast.Subscript target.
 This test ensures that class attributes using subscript notation are correctly handled.
 """
 code = dedent("""
 class TestClass:
 key_data: dict = {}
 key_data["key"]: str = "value"
 index_data: list = [10, 20, 30]
 index_data[0:2]: list[str] = ["a", "b"]
 result = (TestClass.key_data['key'], TestClass.index_data[1:])
 """)
state = {}
 result, _ = evaluate_python_code(code, BASE_PYTHON_TOOLS, state=state)
assert result == ("value", ["b", 30])
 assert isinstance(state["TestClass"], type)
 # Type objects are not wrapped by safer_func
 for value in state["TestClass"].__annotations__.values():
 assert not hasattr(value, "__wrapped__")
 assert state["TestClass"].__annotations__ == {"key_data": dict, "index_data": list}
 assert state["TestClass"].key_data == {"key": "value"}
 assert state["TestClass"].index_data == ["a", "b", 30]
def test_evaluate_annassign(self):
 code = dedent("""\
 # Basic annotated assignment
 x: int = 42
 # Type annotations with expressions
 y: float = x / 2
 # Type annotation without assignment
 z: list
 # Type annotation with complex value
 names: list = ["Alice", "Bob", "Charlie"]
 # Type hint shouldn't restrict values at runtime
 s: str = 123 # Would be a type error in static checking, but valid at runtime
 # Access the values
 result = (x, y, names, s)
 """)
 state = {}
 evaluate_python_code(code, BASE_PYTHON_TOOLS, state=state)
 assert state["x"] == 42
 assert state["y"] == 21.0
 assert "z" not in state # z should be not be defined
 assert state["names"] == ["Alice", "Bob", "Charlie"]
 assert state["s"] == 123 # Type hints don't restrict at runtime
 assert state["result"] == (42, 21.0, ["Alice", "Bob", "Charlie"], 123)
@pytest.mark.parametrize(
 "code, expected_result",
 [
 (
 dedent("""\
 x = 1
 x += 2
 """),
 3,
 ),
 (
 dedent("""\
 x = "a"
 x += "b"
 """),
 "ab",
 ),
 (
 dedent("""\
 class Custom:
 def __init__(self, value):
 self.value = value
 def __iadd__(self, other):
 self.value += other * 10
 return self
 x = Custom(1)
 x += 2
 x.value
 """),
 21,
 ),
 ],
 )
 def test_evaluate_augassign(self, code, expected_result):
 state = {}
 result, _ = evaluate_python_code(code, {}, state=state)
 assert result == expected_result
@pytest.mark.parametrize(
 "operator, expected_result",
 [
 ("+=", 7),
 ("-=", 3),
 ("*=", 10),
 ("/=", 2.5),
 ("//=", 2),
 ("%=", 1),
 ("**=", 25),
 ("&=", 0),
 ("|=", 7),
 ("^=", 7),
 (">>=", 1),
 ("<<=", 20),
 ],
 )
 def test_evaluate_augassign_number(self, operator, expected_result):
 code = dedent("""\
 x = 5
 x {operator} 2
 """).format(operator=operator)
 state = {}
 result, _ = evaluate_python_code(code, {}, state=state)
 assert result == expected_result
@pytest.mark.parametrize(
 "operator, expected_result",
 [
 ("+=", 7),
 ("-=", 3),
 ("*=", 10),
 ("/=", 2.5),
 ("//=", 2),
 ("%=", 1),
 ("**=", 25),
 ("&=", 0),
 ("|=", 7),
 ("^=", 7),
 (">>=", 1),
 ("<<=", 20),
 ],
 )
 def test_evaluate_augassign_custom(self, operator, expected_result):
 operator_names = {
 "+=": "iadd",
 "-=": "isub",
 "*=": "imul",
 "/=": "itruediv",
 "//=": "ifloordiv",
 "%=": "imod",
 "**=": "ipow",
 "&=": "iand",
 "|=": "ior",
 "^=": "ixor",
 ">>=": "irshift",
 "<<=": "ilshift",
 }
 code = dedent("""\
 class Custom:
 def __init__(self, value):
 self.value = value
 def __{operator_name}__(self, other):
 self.value {operator} other
 return self
 x = Custom(5)
 x {operator} 2
 x.value
 """).format(operator=operator, operator_name=operator_names[operator])
 state = {}
 result, _ = evaluate_python_code(code, {}, state=state)
 assert result == expected_result
@pytest.mark.parametrize(
 "code, expected_error_message",
 [
 (
 dedent("""\
 x = 5
 del x
 x
 """),
 "The variable `x` is not defined",
 ),
 (
 dedent("""\
 x = [1, 2, 3]
 del x[2]
 x[2]
 """),
 "IndexError: list index out of range",
 ),
 (
 dedent("""\
 x = {"key": "value"}
 del x["key"]
 x["key"]
 """),
 "Could not index {} with 'key'",
 ),
 (
 dedent("""\
 del x
 """),
 "Cannot delete name 'x': name is not defined",
 ),
 ],
 )
 def test_evaluate_delete(self, code, expected_error_message):
 state = {}
 with pytest.raises(InterpreterError) as exception_info:
 evaluate_python_code(code, {}, state=state)
 assert expected_error_message in str(exception_info.value)
def test_non_standard_comparisons(self):
 code = dedent("""\
 class NonStdEqualsResult:
 def __init__(self, left:object, right:object):
 self._left = left
 self._right = right
 def __str__(self) -> str:
 return f'{self._left} == {self._right}'
 class NonStdComparisonClass:
 def __init__(self, value: str ):
 self._value = value
 def __str__(self):
 return self._value
 def __eq__(self, other):
 return NonStdEqualsResult(self, other)
 a = NonStdComparisonClass("a")
 b = NonStdComparisonClass("b")
 result = a == b
 """)
 result, _ = evaluate_python_code(code, state={})
 assert not isinstance(result, bool)
 assert str(result) == "a == b"
class TestEvaluateBoolop:
 @pytest.mark.parametrize("a", [1, 0])
 @pytest.mark.parametrize("b", [2, 0])
 @pytest.mark.parametrize("c", [3, 0])
 def test_evaluate_boolop_and(self, a, b, c):
 boolop_ast = ast.parse("a and b and c").body[0].value
 state = {"a": a, "b": b, "c": c}
 result = evaluate_boolop(boolop_ast, state, {}, {}, [])
 assert result == (a and b and c)
@pytest.mark.parametrize("a", [1, 0])
 @pytest.mark.parametrize("b", [2, 0])
 @pytest.mark.parametrize("c", [3, 0])
 def test_evaluate_boolop_or(self, a, b, c):
 boolop_ast = ast.parse("a or b or c").body[0].value
 state = {"a": a, "b": b, "c": c}
 result = evaluate_boolop(boolop_ast, state, {}, {}, [])
 assert result == (a or b or c)
class TestEvaluateDelete:
 @pytest.mark.parametrize(
 "code, state, expectation",
 [
 ("del x", {"x": 1}, {}),
 ("del x[1]", {"x": [1, 2, 3]}, {"x": [1, 3]}),
 ("del x['key']", {"x": {"key": "value"}}, {"x": {}}),
 ("del x", {}, InterpreterError("Cannot delete name 'x': name is not defined")),
 ],
 )
 def test_evaluate_delete(self, code, state, expectation):
 delete_node = ast.parse(code).body[0]
 if isinstance(expectation, Exception):
 with pytest.raises(type(expectation)) as exception_info:
 evaluate_delete(delete_node, state, {}, {}, [])
 assert str(expectation) in str(exception_info.value)
 else:
 evaluate_delete(delete_node, state, {}, {}, [])
 _ = state.pop("_operations_count", None)
 assert state == expectation
class TestEvaluateCondition:
 @pytest.mark.parametrize(
 "condition, state, expected_result",
 [
 ("a == b", {"a": 1, "b": 1}, True),
 ("a == b", {"a": 1, "b": 2}, False),
 ("a != b", {"a": 1, "b": 1}, False),
 ("a != b", {"a": 1, "b": 2}, True),
 ("a < b", {"a": 1, "b": 1}, False),
 ("a < b", {"a": 1, "b": 2}, True),
 ("a < b", {"a": 2, "b": 1}, False),
 ("a <= b", {"a": 1, "b": 1}, True),
 ("a <= b", {"a": 1, "b": 2}, True),
 ("a <= b", {"a": 2, "b": 1}, False),
 ("a > b", {"a": 1, "b": 1}, False),
 ("a > b", {"a": 1, "b": 2}, False),
 ("a > b", {"a": 2, "b": 1}, True),
 ("a >= b", {"a": 1, "b": 1}, True),
 ("a >= b", {"a": 1, "b": 2}, False),
 ("a >= b", {"a": 2, "b": 1}, True),
 ("a is b", {"a": 1, "b": 1}, True),
 ("a is b", {"a": 1, "b": 2}, False),
 ("a is not b", {"a": 1, "b": 1}, False),
 ("a is not b", {"a": 1, "b": 2}, True),
 ("a in b", {"a": 1, "b": [1, 2, 3]}, True),
 ("a in b", {"a": 4, "b": [1, 2, 3]}, False),
 ("a not in b", {"a": 1, "b": [1, 2, 3]}, False),
 ("a not in b", {"a": 4, "b": [1, 2, 3]}, True),
 # Chained conditions:
 ("a == b == c", {"a": 1, "b": 1, "c": 1}, True),
 ("a == b == c", {"a": 1, "b": 2, "c": 1}, False),
 ("a == b < c", {"a": 2, "b": 2, "c": 2}, False),
 ("a == b < c", {"a": 0, "b": 0, "c": 1}, True),
 ],
 )
 def test_evaluate_condition(self, condition, state, expected_result):
 condition_ast = ast.parse(condition, mode="eval").body
 result = evaluate_condition(condition_ast, state, {}, {}, [])
 assert result == expected_result
@pytest.mark.parametrize(
 "condition, state, expected_result",
 [
 ("a == b", {"a": pd.Series([1, 2, 3]), "b": pd.Series([2, 2, 2])}, pd.Series([False, True, False])),
 ("a != b", {"a": pd.Series([1, 2, 3]), "b": pd.Series([2, 2, 2])}, pd.Series([True, False, True])),
 ("a < b", {"a": pd.Series([1, 2, 3]), "b": pd.Series([2, 2, 2])}, pd.Series([True, False, False])),
 ("a <= b", {"a": pd.Series([1, 2, 3]), "b": pd.Series([2, 2, 2])}, pd.Series([True, True, False])),
 ("a > b", {"a": pd.Series([1, 2, 3]), "b": pd.Series([2, 2, 2])}, pd.Series([False, False, True])),
 ("a >= b", {"a": pd.Series([1, 2, 3]), "b": pd.Series([2, 2, 2])}, pd.Series([False, True, True])),
 (
 "a == b",
 {"a": pd.DataFrame({"x": [1, 2], "y": [3, 4]}), "b": pd.DataFrame({"x": [1, 2], "y": [3, 5]})},
 pd.DataFrame({"x": [True, True], "y": [True, False]}),
 ),
 (
 "a != b",
 {"a": pd.DataFrame({"x": [1, 2], "y": [3, 4]}), "b": pd.DataFrame({"x": [1, 2], "y": [3, 5]})},
 pd.DataFrame({"x": [False, False], "y": [False, True]}),
 ),
 (
 "a < b",
 {"a": pd.DataFrame({"x": [1, 2], "y": [3, 4]}), "b": pd.DataFrame({"x": [2, 2], "y": [2, 2]})},
 pd.DataFrame({"x": [True, False], "y": [False, False]}),
 ),
 (
 "a <= b",
 {"a": pd.DataFrame({"x": [1, 2], "y": [3, 4]}), "b": pd.DataFrame({"x": [2, 2], "y": [2, 2]})},
 pd.DataFrame({"x": [True, True], "y": [False, False]}),
 ),
 (
 "a > b",
 {"a": pd.DataFrame({"x": [1, 2], "y": [3, 4]}), "b": pd.DataFrame({"x": [2, 2], "y": [2, 2]})},
 pd.DataFrame({"x": [False, False], "y": [True, True]}),
 ),
 (
 "a >= b",
 {"a": pd.DataFrame({"x": [1, 2], "y": [3, 4]}), "b": pd.DataFrame({"x": [2, 2], "y": [2, 2]})},
 pd.DataFrame({"x": [False, True], "y": [True, True]}),
 ),
 ],
 )
 def test_evaluate_condition_with_pandas(self, condition, state, expected_result):
 condition_ast = ast.parse(condition, mode="eval").body
 result = evaluate_condition(condition_ast, state, {}, {}, [])
 if isinstance(result, pd.Series):
 pd.testing.assert_series_equal(result, expected_result)
 else:
 pd.testing.assert_frame_equal(result, expected_result)
@pytest.mark.parametrize(
 "condition, state, expected_exception",
 [
 # Chained conditions:
 (
 "a == b == c",
 {
 "a": pd.Series([1, 2, 3]),
 "b": pd.Series([2, 2, 2]),
 "c": pd.Series([3, 3, 3]),
 },
 ValueError(
 "The truth value of a Series is ambiguous. Use a.empty, a.bool(), a.item(), a.any() or a.all()."
 ),
 ),
 (
 "a == b == c",
 {
 "a": pd.DataFrame({"x": [1, 2], "y": [3, 4]}),
 "b": pd.DataFrame({"x": [2, 2], "y": [2, 2]}),
 "c": pd.DataFrame({"x": [3, 3], "y": [3, 3]}),
 },
 ValueError(
 "The truth value of a DataFrame is ambiguous. Use a.empty, a.bool(), a.item(), a.any() or a.all()."
 ),
 ),
 ],
 )
 def test_evaluate_condition_with_pandas_exceptions(self, condition, state, expected_exception):
 condition_ast = ast.parse(condition, mode="eval").body
 with pytest.raises(type(expected_exception)) as exception_info:
 _ = evaluate_condition(condition_ast, state, {}, {}, [])
 assert str(expected_exception) in str(exception_info.value)
class TestEvaluateSubscript:
 @pytest.mark.parametrize(
 "subscript, state, expected_result",
 [
 ("dct[1]", {"dct": {1: 11, 2: 22}}, 11),
 ("dct[2]", {"dct": {1: "a", 2: "b"}}, "b"),
 ("dct['b']", {"dct": {"a": 1, "b": 2}}, 2),
 ("dct['a']", {"dct": {"a": "aa", "b": "bb"}}, "aa"),
 ("dct[1, 2]", {"dct": {(1, 2): 3}}, 3), # tuple-index
 ("dct['a']['b']", {"dct": {"a": {"b": 1}}}, 1), # nested
 ("lst[0]", {"lst": [1, 2, 3]}, 1),
 ("lst[-1]", {"lst": [1, 2, 3]}, 3),
 ("lst[1:3]", {"lst": [1, 2, 3, 4]}, [2, 3]),
 ("lst[:]", {"lst": [1, 2, 3]}, [1, 2, 3]),
 ("lst[::2]", {"lst": [1, 2, 3, 4]}, [1, 3]),
 ("lst[::-1]", {"lst": [1, 2, 3]}, [3, 2, 1]),
 ("tup[1]", {"tup": (1, 2, 3)}, 2),
 ("tup[-1]", {"tup": (1, 2, 3)}, 3),
 ("tup[1:3]", {"tup": (1, 2, 3, 4)}, (2, 3)),
 ("tup[:]", {"tup": (1, 2, 3)}, (1, 2, 3)),
 ("tup[::2]", {"tup": (1, 2, 3, 4)}, (1, 3)),
 ("tup[::-1]", {"tup": (1, 2, 3)}, (3, 2, 1)),
 ("st[1]", {"str": "abc"}, "b"),
 ("st[-1]", {"str": "abc"}, "c"),
 ("st[1:3]", {"str": "abcd"}, "bc"),
 ("st[:]", {"str": "abc"}, "abc"),
 ("st[::2]", {"str": "abcd"}, "ac"),
 ("st[::-1]", {"str": "abc"}, "cba"),
 ("arr[1]", {"arr": np.array([1, 2, 3])}, 2),
 ("arr[1:3]", {"arr": np.array([1, 2, 3, 4])}, np.array([2, 3])),
 ("arr[:]", {"arr": np.array([1, 2, 3])}, np.array([1, 2, 3])),
 ("arr[::2]", {"arr": np.array([1, 2, 3, 4])}, np.array([1, 3])),
 ("arr[::-1]", {"arr": np.array([1, 2, 3])}, np.array([3, 2, 1])),
 ("arr[1, 2]", {"arr": np.array([[1, 2, 3], [4, 5, 6]])}, 6),
 ("ser[1]", {"ser": pd.Series([1, 2, 3])}, 2),
 ("ser.loc[1]", {"ser": pd.Series([1, 2, 3])}, 2),
 ("ser.loc[1]", {"ser": pd.Series([1, 2, 3], index=[2, 3, 1])}, 3),
 ("ser.iloc[1]", {"ser": pd.Series([1, 2, 3])}, 2),
 ("ser.iloc[1]", {"ser": pd.Series([1, 2, 3], index=[2, 3, 1])}, 2),
 ("ser.at[1]", {"ser": pd.Series([1, 2, 3])}, 2),
 ("ser.at[1]", {"ser": pd.Series([1, 2, 3], index=[2, 3, 1])}, 3),
 ("ser.iat[1]", {"ser": pd.Series([1, 2, 3])}, 2),
 ("ser.iat[1]", {"ser": pd.Series([1, 2, 3], index=[2, 3, 1])}, 2),
 ("ser[1:3]", {"ser": pd.Series([1, 2, 3, 4])}, pd.Series([2, 3], index=[1, 2])),
 ("ser[:]", {"ser": pd.Series([1, 2, 3])}, pd.Series([1, 2, 3])),
 ("ser[::2]", {"ser": pd.Series([1, 2, 3, 4])}, pd.Series([1, 3], index=[0, 2])),
 ("ser[::-1]", {"ser": pd.Series([1, 2, 3])}, pd.Series([3, 2, 1], index=[2, 1, 0])),
 ("df['y'][1]", {"df": pd.DataFrame({"x": [1, 2], "y": [3, 4]})}, 4),
 ("df['y'][5]", {"df": pd.DataFrame({"x": [1, 2], "y": [3, 4]}, index=[5, 6])}, 3),
 ("df.loc[1, 'y']", {"df": pd.DataFrame({"x": [1, 2], "y": [3, 4]})}, 4),
 ("df.loc[5, 'y']", {"df": pd.DataFrame({"x": [1, 2], "y": [3, 4]}, index=[5, 6])}, 3),
 ("df.iloc[1, 1]", {"df": pd.DataFrame({"x": [1, 2], "y": [3, 4]})}, 4),
 ("df.iloc[1, 1]", {"df": pd.DataFrame({"x": [1, 2], "y": [3, 4]}, index=[5, 6])}, 4),
 ("df.at[1, 'y']", {"df": pd.DataFrame({"x": [1, 2], "y": [3, 4]})}, 4),
 ("df.at[5, 'y']", {"df": pd.DataFrame({"x": [1, 2], "y": [3, 4]}, index=[5, 6])}, 3),
 ("df.iat[1, 1]", {"df": pd.DataFrame({"x": [1, 2], "y": [3, 4]})}, 4),
 ("df.iat[1, 1]", {"df": pd.DataFrame({"x": [1, 2], "y": [3, 4]}, index=[5, 6])}, 4),
 ],
 )
 def test_evaluate_subscript(self, subscript, state, expected_result):
 subscript_ast = ast.parse(subscript).body[0].value
 result = evaluate_subscript(subscript_ast, state, {}, {}, [])
 try:
 assert result == expected_result
 except ValueError:
 assert (result == expected_result).all()
@pytest.mark.parametrize(
 "subscript, state, expected_error_message",
 [
 ("dct['a']", {"dct": {}}, "KeyError: 'a'"),
 ("dct[0]", {"dct": {}}, "KeyError: 0"),
 ("dct['c']", {"dct": {"a": 1, "b": 2}}, "KeyError: 'c'"),
 ("dct[1, 2, 3]", {"dct": {(1, 2): 3}}, "KeyError: (1, 2, 3)"),
 ("lst[0]", {"lst": []}, "IndexError: list index out of range"),
 ("lst[3]", {"lst": [1, 2, 3]}, "IndexError: list index out of range"),
 ("lst[-4]", {"lst": [1, 2, 3]}, "IndexError: list index out of range"),
 ("value[0]", {"value": 1}, "TypeError: 'int' object is not subscriptable"),
 ],
 )
 def test_evaluate_subscript_error(self, subscript, state, expected_error_message):
 subscript_ast = ast.parse(subscript).body[0].value
 with pytest.raises(InterpreterError, match="Could not index") as exception_info:
 _ = evaluate_subscript(subscript_ast, state, {}, {}, [])
 assert expected_error_message in str(exception_info.value)
@pytest.mark.parametrize(
 "subscriptable_class, expectation",
 [
 (True, 20),
 (False, InterpreterError("TypeError: 'Custom' object is not subscriptable")),
 ],
 )
 def test_evaluate_subscript_with_custom_class(self, subscriptable_class, expectation):
 if subscriptable_class:
class Custom:
 def __getitem__(self, key):
 return key * 10
 else:
class Custom:
 pass
state = {"obj": Custom()}
 subscript = "obj[2]"
 subscript_ast = ast.parse(subscript).body[0].value
 if isinstance(expectation, Exception):
 with pytest.raises(type(expectation), match="Could not index") as exception_info:
 evaluate_subscript(subscript_ast, state, {}, {}, [])
 assert "TypeError: 'Custom' object is not subscriptable" in str(exception_info.value)
 else:
 result = evaluate_subscript(subscript_ast, state, {}, {}, [])
 assert result == expectation
def test_get_safe_module_handle_lazy_imports():
 class FakeModule(types.ModuleType):
 def __init__(self, name):
 super().__init__(name)
 self.non_lazy_attribute = "ok"
def __getattr__(self, name):
 if name == "lazy_attribute":
 raise ImportError("lazy import failure")
 return super().__getattr__(name)
def __dir__(self):
 return super().__dir__() + ["lazy_attribute"]
fake_module = FakeModule("fake_module")
 safe_module = get_safe_module(fake_module, authorized_imports=set())
 assert not hasattr(safe_module, "lazy_attribute")
 assert getattr(safe_module, "non_lazy_attribute") == "ok"
class TestPrintContainer:
 def test_initial_value(self):
 pc = PrintContainer()
 assert pc.value == ""
def test_append(self):
 pc = PrintContainer()
 pc.append("Hello")
 assert pc.value == "Hello"
def test_iadd(self):
 pc = PrintContainer()
 pc += "World"
 assert pc.value == "World"
def test_str(self):
 pc = PrintContainer()
 pc.append("Hello")
 assert str(pc) == "Hello"
def test_repr(self):
 pc = PrintContainer()
 pc.append("Hello")
 assert repr(pc) == "PrintContainer(Hello)"
def test_len(self):
 pc = PrintContainer()
 pc.append("Hello")
 assert len(pc) == 5
def test_fix_final_answer_code():
 test_cases = [
 (
 "final_answer = 3.21\nfinal_answer(final_answer)",
 "final_answer_variable = 3.21\nfinal_answer(final_answer_variable)",
 ),
 (
 "x = final_answer(5)\nfinal_answer = x + 1\nfinal_answer(final_answer)",
 "x = final_answer(5)\nfinal_answer_variable = x + 1\nfinal_answer(final_answer_variable)",
 ),
 (
 "def func():\n final_answer = 42\n return final_answer(final_answer)",
 "def func():\n final_answer_variable = 42\n return final_answer(final_answer_variable)",
 ),
 (
 "final_answer(5) # Should not change function calls",
 "final_answer(5) # Should not change function calls",
 ),
 (
 "obj.final_answer = 5 # Should not change object attributes",
 "obj.final_answer = 5 # Should not change object attributes",
 ),
 (
 "final_answer=3.21;final_answer(final_answer)",
 "final_answer_variable=3.21;final_answer(final_answer_variable)",
 ),
 ]
for i, (input_code, expected) in enumerate(test_cases, 1):
 result = fix_final_answer_code(input_code)
 assert result == expected, f"""
Test case {i} failed:
Input: {input_code}
Expected: {expected}
Got: {result}
"""
@pytest.mark.parametrize(
 "module,authorized_imports,expected",
 [
 ("os", ["other", "*"], True),
 ("AnyModule", ["*"], True),
 ("os", ["os"], True),
 ("AnyModule", ["AnyModule"], True),
 ("Module.os", ["Module"], False),
 ("Module.os", ["Module", "Module.os"], True),
 ("os.path", ["os.*"], True),
 ("os", ["os.path"], True),
 ],
)
def test_check_import_authorized(module: str, authorized_imports: list[str], expected: bool):
 assert check_import_authorized(module, authorized_imports) == expected
class TestLocalPythonExecutor:
 def test_state_name(self):
 executor = LocalPythonExecutor(additional_authorized_imports=[])
 assert executor.state.get("__name__") == "__main__"
@pytest.mark.parametrize(
 "code",
 [
 "d = {'func': lambda x: x + 10}; func = d['func']; func(1)",
 "d = {'func': lambda x: x + 10}; d['func'](1)",
 ],
 )
 def test_call_from_dict(self, code):
 executor = LocalPythonExecutor([])
 result, _, _ = executor(code)
 assert result == 11
@pytest.mark.parametrize(
 "code",
 [
 "a = b = 1; a",
 "a = b = 1; b",
 "a, b = c, d = 1, 1; a",
 "a, b = c, d = 1, 1; b",
 "a, b = c, d = 1, 1; c",
 "a, b = c, d = {1, 2}; a",
 "a, b = c, d = {1, 2}; c",
 "a, b = c, d = {1: 10, 2: 20}; a",
 "a, b = c, d = {1: 10, 2: 20}; c",
 "a = b = (lambda: 1)(); b",
 "a = b = (lambda: 1)(); lambda x: 10; b",
 "a = b = (lambda x: lambda y: x + y)(0)(1); b",
 dedent("""
 def foo():
 return 1;
 a = b = foo(); b"""),
 dedent("""
 def foo(*args, **kwargs):
 return sum(args)
 a = b = foo(1,-1,1); b"""),
 "a, b = 1, 2; a, b = b, a; b",
 ],
 )
 def test_chained_assignments(self, code):
 executor = LocalPythonExecutor([])
 executor.send_tools({})
 result, _, _ = executor(code)
 assert result == 1
def test_evaluate_assign_error(self):
 code = "a, b = 1, 2, 3; a"
 executor = LocalPythonExecutor([])
 with pytest.raises(InterpreterError, match=".*Cannot unpack tuple of wrong size"):
 executor(code)
def test_function_def_recovers_source_code(self):
 executor = LocalPythonExecutor([])
 executor.send_tools({"final_answer": FinalAnswerTool()})
 res, _, _ = executor(
 dedent(
 """
 def target_function():
 return "Hello world"
 final_answer(target_function)
 """
 )
 )
 assert res.__name__ == "target_function"
 assert res.__source__ == "def target_function():\n return 'Hello world'"
@pytest.mark.parametrize(
 "code, expected_result",
 [("isinstance(5, int)", True), ("isinstance('foo', str)", True), ("isinstance(5, str)", False)],
 )
 def test_isinstance_builtin_type(self, code, expected_result):
 executor = LocalPythonExecutor([])
 executor.send_tools({})
 result, _, _ = executor(code)
 assert result is expected_result
class TestLocalPythonExecutorSecurity:
 @pytest.mark.parametrize(
 "additional_authorized_imports, expected_error",
 [([], InterpreterError("Import of os is not allowed")), (["os"], None)],
 )
 def test_vulnerability_import(self, additional_authorized_imports, expected_error):
 executor = LocalPythonExecutor(additional_authorized_imports)
 with (
 pytest.raises(type(expected_error), match=f".*{expected_error}")
 if isinstance(expected_error, Exception)
 else does_not_raise()
 ):
 executor("import os")
@pytest.mark.parametrize(
 "additional_authorized_imports, expected_error",
 [([], InterpreterError("Import of builtins is not allowed")), (["builtins"], None)],
 )
 def test_vulnerability_builtins(self, additional_authorized_imports, expected_error):
 executor = LocalPythonExecutor(additional_authorized_imports)
 with (
 pytest.raises(type(expected_error), match=f".*{expected_error}")
 if isinstance(expected_error, Exception)
 else does_not_raise()
 ):
 executor("import builtins")
@pytest.mark.parametrize(
 "additional_authorized_imports, expected_error",
 [([], InterpreterError("Import of builtins is not allowed")), (["builtins"], None)],
 )
 def test_vulnerability_builtins_safe_functions(self, additional_authorized_imports, expected_error):
 executor = LocalPythonExecutor(additional_authorized_imports)
 with (
 pytest.raises(type(expected_error), match=f".*{expected_error}")
 if isinstance(expected_error, Exception)
 else does_not_raise()
 ):
 executor("import builtins; builtins.print(1)")
@pytest.mark.parametrize(
 "additional_authorized_imports, additional_tools, expected_error",
 [
 ([], [], InterpreterError("Import of builtins is not allowed")),
 (["builtins"], [], InterpreterError("Forbidden access to function: exec")),
 (["builtins"], ["exec"], None),
 ],
 )
 def test_vulnerability_builtins_dangerous_functions(
 self, additional_authorized_imports, additional_tools, expected_error
 ):
 executor = LocalPythonExecutor(additional_authorized_imports)
 if additional_tools:
 from builtins import exec
executor.send_tools({"exec": exec})
 with (
 pytest.raises(type(expected_error), match=f".*{expected_error}")
 if isinstance(expected_error, Exception)
 else does_not_raise()
 ):
 executor("import builtins; builtins.exec")
@pytest.mark.parametrize(
 "additional_authorized_imports, additional_tools, expected_error",
 [
 ([], [], InterpreterError("Import of os is not allowed")),
 (["os"], [], InterpreterError("Forbidden access to function: popen")),
 (["os"], ["popen"], None),
 ],
 )
 def test_vulnerability_dangerous_functions(self, additional_authorized_imports, additional_tools, expected_error):
 executor = LocalPythonExecutor(additional_authorized_imports)
 if additional_tools:
 from os import popen
executor.send_tools({"popen": popen})
 with (
 pytest.raises(type(expected_error), match=f".*{expected_error}")
 if isinstance(expected_error, Exception)
 else does_not_raise()
 ):
 executor("import os; os.popen")
@pytest.mark.parametrize("dangerous_function", DANGEROUS_FUNCTIONS)
 def test_vulnerability_for_all_dangerous_functions(self, dangerous_function):
 dangerous_module_name, dangerous_function_name = dangerous_function.rsplit(".", 1)
 # Skip test if module is not installed: posix module is not installed on Windows
 pytest.importorskip(dangerous_module_name)
 executor = LocalPythonExecutor([dangerous_module_name])
 if "__" in dangerous_function_name:
 error_match = f".*Forbidden access to dunder attribute: {dangerous_function_name}"
 else:
 error_match = f".*Forbidden access to function: {dangerous_function_name}.*"
 with pytest.raises(InterpreterError, match=error_match):
 executor(f"import {dangerous_module_name}; {dangerous_function}")
@pytest.mark.parametrize(
 "additional_authorized_imports, expected_error",
 [
 ([], InterpreterError("Import of sys is not allowed")),
 (["sys"], InterpreterError("Forbidden access to module: os")),
 (["sys", "os"], None),
 ],
 )
 def test_vulnerability_via_sys(self, additional_authorized_imports, expected_error):
 executor = LocalPythonExecutor(additional_authorized_imports)
 with (
 pytest.raises(type(expected_error), match=f".*{expected_error}")
 if isinstance(expected_error, Exception)
 else does_not_raise()
 ):
 executor(
 dedent(
 """
 import sys
 sys.modules["os"].system(":")
 """
 )
 )
@pytest.mark.parametrize("dangerous_module", DANGEROUS_MODULES)
 def test_vulnerability_via_sys_for_all_dangerous_modules(self, dangerous_module):
 import sys
if dangerous_module not in sys.modules or dangerous_module == "sys":
 pytest.skip("module not present in sys.modules")
 executor = LocalPythonExecutor(["sys"])
 with pytest.raises(InterpreterError) as exception_info:
 executor(
 dedent(
 f"""
 import sys
 sys.modules["{dangerous_module}"]
 """
 )
 )
 assert f"Forbidden access to module: {dangerous_module}" in str(exception_info.value)
@pytest.mark.parametrize(
 "additional_authorized_imports, expected_error",
 [(["importlib"], InterpreterError("Forbidden access to module: os")), (["importlib", "os"], None)],
 )
 def test_vulnerability_via_importlib(self, additional_authorized_imports, expected_error):
 executor = LocalPythonExecutor(additional_authorized_imports)
 with (
 pytest.raises(type(expected_error), match=f".*{expected_error}")
 if isinstance(expected_error, Exception)
 else does_not_raise()
 ):
 executor(
 dedent(
 """
 import importlib
 importlib.import_module("os").system(":")
 """
 )
 )
@pytest.mark.parametrize(
 "code, additional_authorized_imports, expected_error",
 [
 # os submodule
 (
 "import queue; queue.threading._os.system(':')",
 [],
 InterpreterError("Forbidden access to module: threading"),
 ),
 (
 "import queue; queue.threading._os.system(':')",
 ["threading"],
 InterpreterError("Forbidden access to module: os"),
 ),
 ("import random; random._os.system(':')", [], InterpreterError("Forbidden access to module: os")),
 (
 "import random; random.__dict__['_os'].system(':')",
 [],
 InterpreterError("Forbidden access to dunder attribute: __dict__"),
 ),
 (
 "import doctest; doctest.inspect.os.system(':')",
 ["doctest"],
 InterpreterError("Forbidden access to module: inspect"),
 ),
 (
 "import doctest; doctest.inspect.os.system(':')",
 ["doctest", "inspect"],
 InterpreterError("Forbidden access to module: os"),
 ),
 # subprocess submodule
 (
 "import asyncio; asyncio.base_events.events.subprocess",
 ["asyncio"],
 InterpreterError("Forbidden access to module: asyncio.base_events"),
 ),
 (
 "import asyncio; asyncio.base_events.events.subprocess",
 ["asyncio", "asyncio.base_events"],
 InterpreterError("Forbidden access to module: asyncio.events"),
 ),
 (
 "import asyncio; asyncio.base_events.events.subprocess",
 ["asyncio", "asyncio.base_events", "asyncio.base_events.events"],
 InterpreterError("Forbidden access to module: asyncio.events"),
 ),
 # sys submodule
 (
 "import queue; queue.threading._sys.modules['os'].system(':')",
 [],
 InterpreterError("Forbidden access to module: threading"),
 ),
 (
 "import queue; queue.threading._sys.modules['os'].system(':')",
 ["threading"],
 InterpreterError("Forbidden access to module: sys"),
 ),
 ("import warnings; warnings.sys", ["warnings"], InterpreterError("Forbidden access to module: sys")),
 # Allowed
 ("import pandas; pandas.io", ["pandas", "pandas.io"], None),
 ],
 )
 def test_vulnerability_via_submodules(self, code, additional_authorized_imports, expected_error):
 executor = LocalPythonExecutor(additional_authorized_imports)
 with (
 pytest.raises(type(expected_error), match=f".*{expected_error}")
 if isinstance(expected_error, Exception)
 else does_not_raise()
 ):
 executor(code)
@pytest.mark.parametrize(
 "code, additional_authorized_imports, expected_error",
 [
 # Using filter with functools.partial
 (
 dedent(
 """
 import functools
 import warnings
 list(filter(functools.partial(getattr, warnings), ["sys"]))
 """
 ),
 ["warnings", "functools"],
 InterpreterError("Forbidden access to module: sys"),
 ),
 # Using map
 (
 dedent(
 """
 import warnings
 list(map(getattr, [warnings], ["sys"]))
 """
 ),
 ["warnings"],
 InterpreterError("Forbidden access to module: sys"),
 ),
 # Using map with functools.partial
 (
 dedent(
 """
 import functools
 import warnings
 list(map(functools.partial(getattr, warnings), ["sys"]))
 """
 ),
 ["warnings", "functools"],
 InterpreterError("Forbidden access to module: sys"),
 ),
 ],
 )
 def test_vulnerability_via_submodules_through_indirect_attribute_access(
 self, code, additional_authorized_imports, expected_error
 ):
 # warnings.sys
 executor = LocalPythonExecutor(additional_authorized_imports)
 executor.send_tools({})
 with pytest.raises(type(expected_error), match=f".*{expected_error}"):
 executor(code)
@pytest.mark.parametrize(
 "additional_authorized_imports, additional_tools, expected_error",
 [
 ([], [], InterpreterError("Import of sys is not allowed")),
 (["sys"], [], InterpreterError("Forbidden access to module: builtins")),
 (
 ["sys", "builtins"],
 [],
 InterpreterError("Forbidden access to function: __import__"),
 ),
 (["sys", "builtins"], ["__import__"], InterpreterError("Forbidden access to module: os")),
 (["sys", "builtins", "os"], ["__import__"], None),
 ],
 )
 def test_vulnerability_builtins_via_sys(self, additional_authorized_imports, additional_tools, expected_error):
 executor = LocalPythonExecutor(additional_authorized_imports)
 if additional_tools:
 from builtins import __import__
executor.send_tools({"__import__": __import__})
 with (
 pytest.raises(type(expected_error), match=f".*{expected_error}")
 if isinstance(expected_error, Exception)
 else does_not_raise()
 ):
 executor(
 dedent(
 """
 import sys
 builtins = sys._getframe().f_builtins
 builtins_import = builtins["__import__"]
 os_module = builtins_import("os")
 os_module.system(":")
 """
 )
 )
@pytest.mark.parametrize("patch_builtin_import_module", [False, True]) # builtins_import.__module__ = None
 @pytest.mark.parametrize(
 "additional_authorized_imports, additional_tools, expected_error",
 [
 ([], [], InterpreterError("Forbidden access to dunder attribute: __traceback__")),
 (
 ["builtins", "os"],
 ["__import__"],
 InterpreterError("Forbidden access to dunder attribute: __traceback__"),
 ),
 ],
 )
 def test_vulnerability_builtins_via_traceback(
 self, patch_builtin_import_module, additional_authorized_imports, additional_tools, expected_error, monkeypatch
 ):
 if patch_builtin_import_module:
 monkeypatch.setattr("builtins.__import__.__module__", None) # inspect.getmodule(func) = None
 executor = LocalPythonExecutor(additional_authorized_imports)
 if additional_tools:
 from builtins import __import__
executor.send_tools({"__import__": __import__})
 with (
 pytest.raises(type(expected_error), match=f".*{expected_error}")
 if isinstance(expected_error, Exception)
 else does_not_raise()
 ):
 executor(
 dedent(
 """
 try:
 1 / 0
 except Exception as e:
 builtins = e.__traceback__.tb_frame.f_back.f_globals["__builtins__"]
 builtins_import = builtins["__import__"]
 os_module = builtins_import("os")
 os_module.system(":")
 """
 )
 )
@pytest.mark.parametrize("patch_builtin_import_module", [False, True]) # builtins_import.__module__ = None
 @pytest.mark.parametrize(
 "additional_authorized_imports, additional_tools, expected_error",
 [
 ([], [], InterpreterError("Forbidden access to dunder attribute: __base__")),
 (["warnings"], [], InterpreterError("Forbidden access to dunder attribute: __base__")),
 (
 ["warnings", "builtins"],
 [],
 InterpreterError("Forbidden access to dunder attribute: __base__"),
 ),
 (["warnings", "builtins", "os"], [], InterpreterError("Forbidden access to dunder attribute: __base__")),
 (
 ["warnings", "builtins", "os"],
 ["__import__"],
 InterpreterError("Forbidden access to dunder attribute: __base__"),
 ),
 ],
 )
 def test_vulnerability_builtins_via_class_catch_warnings(
 self, patch_builtin_import_module, additional_authorized_imports, additional_tools, expected_error, monkeypatch
 ):
 if patch_builtin_import_module:
 monkeypatch.setattr("builtins.__import__.__module__", None) # inspect.getmodule(func) = None
 executor = LocalPythonExecutor(additional_authorized_imports)
 if additional_tools:
 from builtins import __import__
executor.send_tools({"__import__": __import__})
 if isinstance(expected_error, tuple): # different error depending on patch status
 expected_error = expected_error[patch_builtin_import_module]
 if isinstance(expected_error, Exception):
 expectation = pytest.raises(type(expected_error), match=f".*{expected_error}")
 elif expected_error is None:
 expectation = does_not_raise()
 with expectation:
 executor(
 dedent(
 """
 classes = {}.__class__.__base__.__subclasses__()
 for cls in classes:
 if cls.__name__ == "catch_warnings":
 break
 builtins = cls()._module.__builtins__
 builtins_import = builtins["__import__"]
 os_module = builtins_import('os')
 os_module.system(":")
 """
 )
 )
@pytest.mark.filterwarnings("ignore::DeprecationWarning")
 @pytest.mark.parametrize(
 "additional_authorized_imports, expected_error",
 [
 ([], InterpreterError("Forbidden access to dunder attribute: __base__")),
 (["os"], InterpreterError("Forbidden access to dunder attribute: __base__")),
 ],
 )
 def test_vulnerability_load_module_via_builtin_importer(self, additional_authorized_imports, expected_error):
 executor = LocalPythonExecutor(additional_authorized_imports)
 with (
 pytest.raises(type(expected_error), match=f".*{expected_error}")
 if isinstance(expected_error, Exception)
 else does_not_raise()
 ):
 executor(
 dedent(
 """
 classes = {}.__class__.__base__.__subclasses__()
 for cls in classes:
 if cls.__name__ == "BuiltinImporter":
 break
 os_module = cls().load_module("os")
 os_module.system(":")
 """
 )
 )
def test_vulnerability_class_via_subclasses(self):
 # Subclass: subprocess.Popen
 executor = LocalPythonExecutor([])
 code = dedent(
 """
 for cls in ().__class__.__base__.__subclasses__():
 if 'Popen' in cls.__class__.__repr__(cls):
 break
 cls(["sh", "-c", ":"]).wait()
 """
 )
 with pytest.raises(InterpreterError, match="Forbidden access to dunder attribute: __base__"):
 executor(code)
code = dedent(
 """
 [c for c in ().__class__.__base__.__subclasses__() if "Popen" in c.__class__.__repr__(c)][0](
 ["sh", "-c", ":"]
 ).wait()
 """
 )
 with pytest.raises(InterpreterError, match="Forbidden access to dunder attribute: __base__"):
 executor(code)
@pytest.mark.parametrize(
 "code, dunder_attribute",
 [("a = (); b = a.__class__", "__class__"), ("class A:\n attr=1\nx = A()\nx_dict = x.__dict__", "__dict__")],
 )
 def test_vulnerability_via_dunder_access(self, code, dunder_attribute):
 executor = LocalPythonExecutor([])
 with pytest.raises(InterpreterError, match=f"Forbidden access to dunder attribute: {dunder_attribute}"):
 executor(code)
def test_vulnerability_via_dunder_indirect_access(self):
 executor = LocalPythonExecutor([])
 code = "a = (); b = getattr(a, '__class__')"
 with pytest.raises(InterpreterError, match="Forbidden function evaluation: 'getattr'"):
 executor(code)