summaryrefslogtreecommitdiff
path: root/eval.c
diff options
context:
space:
mode:
Diffstat (limited to 'eval.c')
-rw-r--r--eval.c3
1 files changed, 3 insertions, 0 deletions
diff --git a/eval.c b/eval.c
index a8773e181a..a006f3444d 100644
--- a/eval.c
+++ b/eval.c
@@ -4961,6 +4961,9 @@ rb_f_eval(argc, argv, self)
if (ruby_safe_level >= 4) {
Check_Type(src, T_STRING);
+ if (!NIL_P(scope) && !OBJ_TAINTED(scope)) {
+ rb_raise(rb_eSecurityError, "Insecure: can't modify trusted binding");
+ }
}
else {
Check_SafeStr(src);
generated by cgit v1.2.3 (git 2.25.1) at 2025-06-20 12:03:46 +0000