validateCode static method
Validates that JavaScript code is safe to execute.
Checks for dangerous patterns like:
- Direct eval usage
- Function constructor
- setTimeout/setInterval
Throws SecurityException if dangerous code is detected.
Implementation
static void validateCode(String code) {
final dangerous = [
'eval(',
'Function(',
'setTimeout(',
'setInterval(',
'import(',
'require(',
];
for (final keyword in dangerous) {
if (code.contains(keyword)) {
throw SecurityException('Dangerous code pattern detected: $keyword');
}
}
}