Skip to content

EvalProvider using RestrictedPython [Depends on #519] #520

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
eb8680 merged 29 commits into from
Jan 31, 2026
Merged

EvalProvider using RestrictedPython [Depends on #519] #520

eb8680 merged 29 commits into from
Jan 31, 2026

Conversation

@kiranandcode
Copy link
Contributor

@kiranandcode kiranandcode commented Jan 28, 2026

Building on top of #519, this provides another handler for parse, eval, compile that calls out to RestrictedPython instead to provide some safety. Closing #515, The core of this implementation is:

class RestrictedEvalProvider(ObjectInterpretation):
     ...
    @implements(compile)
    def compile(self, module: ast.Module, filename: str) -> CodeType:
        return compile_restricted(module, filename=filename, mode="exec")

    @implements(exec)
    def exec(self, bytecode: CodeType, env: dict[str, Any]) -> None:
        rglobals = safe_globals.copy()
        for k, v in env.items():
            if k != "__builtins__":
                rglobals[k] = v
        builtins.exec(bytecode, rglobals, env)

parse is the same as UnsafeEval. The tests have been updated to be parametric in the eval provider and test RestrictedEval as well.

@kiranandcode kiranandcode changed the title EvalProvider using RestrictedPython EvalProvider using RestrictedPython [Depends on #519] Jan 28, 2026
@kiranandcode kiranandcode linked an issue Jan 28, 2026 that may be closed by this pull request
RestrictedPythonEval handler for program synthesis #515
Closed
eb8680
eb8680 reviewed Jan 28, 2026
View reviewed changes
kiranandcode and others added 23 commits January 30, 2026 09:57
@kiranandcode
Fresh diff
c192c78
@eb8680 @kiranandcode
remove instructionhandler
ea3d25c
@kiranandcode
updated internal interface to make all tests pass
f83d312
@kiranandcode
fixed caching tests
d8d52e7
@kiranandcode
updated llm.ipynb
a322a35
@kiranandcode
removed unnecessarily defensive validation
41beb78
@kiranandcode
updated tool call decoding to use concrete type of tool result instea…
1400d19 
…d of annotations
@kiranandcode
updated completions to fix basic type errors
a06296d
@kiranandcode
updated call assistant to handle decoding tool calls
c47abd6
@kiranandcode
dropped stale comments
43e5b78
@kiranandcode
moved model and param model back to internals of completions
6bb2b13
@kiranandcode
added default encodable instance for Callable
88da657
@kiranandcode
fixed type errors
88c65ee
@kiranandcode
update to use more structured type for synthesis
18da11b
@kiranandcode
updated callable encoding tests
52df3f6
@kiranandcode
s/TypeError/NotImplementedError
4b10ac3
@kiranandcode
Merge branch 'master' into kg-encodable-default
2a8af94
@kiranandcode
simplified smart constructor
2b4449a
@kiranandcode
bare callables not allowed
553450f
@kiranandcode
droped synthesis and removed encoding_instructions
aac0eb9
@kiranandcode
fixed imports
5b3a559
@kiranandcode
fixed imports and tests
711b27d
@kiranandcode
added restricted python again
3f1aa65
eb8680
eb8680 reviewed Jan 31, 2026
View reviewed changes
eb8680
eb8680 reviewed Jan 31, 2026
View reviewed changes
eb8680
eb8680 reviewed Jan 31, 2026
View reviewed changes
eb8680
eb8680 reviewed Jan 31, 2026
View reviewed changes
eb8680
eb8680 approved these changes Jan 31, 2026
View reviewed changes
Copy link
Contributor

@eb8680 eb8680 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good once you address the dependency comment

@eb8680 eb8680 merged commit 10a4ebd into master Jan 31, 2026
6 checks passed
@eb8680 eb8680 deleted the kg-restricted-eval branch January 31, 2026 03:14
@eb8680 eb8680 mentioned this pull request Jan 31, 2026
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@eb8680 eb8680 eb8680 approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

RestrictedPythonEval handler for program synthesis

2 participants

@kiranandcode @eb8680