`exec` with function calling seems vulnerable to prompt injection/unsanitized inputs

bwhiting2356 · June 26, 2024, 4:23am

Is there a security vulnerability here if we take a string from an LLM and then run it through exec()? When I have done function calling/tools in the past with OpenAI, the function calls came in as JSON that needed to be parsed and then fed in as arguments. Using exec seems to have a lot of advantages when it comes to nested functions, but I’m not sure about this security vulnerability.

Topic		Replies	Views
Whats the advantage of doing extracting/tagging through function calls? Functions, Tools and Agents with LangChain	4	255	March 13, 2024
Function calling Functions, Tools and Agents with LangChain	1	57	February 1, 2025
🌟 New Course! Enroll in Function-calling and Data Extraction With LLMs News and Announcements short-course	2	336	June 24, 2024
Get_llm_response( ) function AI Python for Beginners week-3	2	182	January 9, 2025
Parsing / Storing function output in a variable Function-Calling and Data Extraction with LLMs	0	14	July 8, 2024

`exec` with function calling seems vulnerable to prompt injection/unsanitized inputs

Related topics