Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Safe evaluation of arithmetic expressions in Javascript

Tags:

javascript

math

parsing

I need to evaluate user-entered arithmetic expressions like "2 * (3 + 4)" in Javascript but I don't want to use eval for security reasons.

I could strip out all the characters that are not numbers or operators but I'm not sure this would be safe anyway and it would be nice if the user could use functions like cos, sqrt, etc...

Are there any Javascript libraries that do arithmetic expression evaluation?

like image 975
Giuseppe Ottaviano Avatar asked Feb 21 '11 13:02

Giuseppe Ottaviano

People also ask

Is it safe to use eval in JavaScript?

Malicious code : invoking eval can crash a computer. For example: if you use eval server-side and a mischievous user decides to use an infinite loop as their username. Terribly slow : the JavaScript language is designed to use the full gamut of JavaScript types (numbers, functions, objects, etc)… Not just strings!

How do you evaluate an expression in JavaScript?

JavaScript eval() The eval() method evaluates or executes an argument. If the argument is an expression, eval() evaluates the expression. If the argument is one or more JavaScript statements, eval() executes the statements.

What are the rules for evaluation of arithmetic expressions?

Parentheses may be used in expressions to specify the order of evaluation. Expressions within parentheses are evaluated first. When parentheses are nested, the innermost set of parentheses is evaluated first, and then successively more inclusive parentheses are evaluated.

What is arithmetic expression and how it is evaluated?

Overview. Arithmetic expressions can be written in 3 different notations - infix, prefix, and postfix. In the Prefix notation, the operator is written before the operand in an expression. On the other hand, in the Postfix notation, the operator is written after the operand. The expressions are evaluated using stack.

1 Answers

You can try JavaScript Expression Evaluator:

This library is a modified version of Raphael Graf’s ActionScript Expression Parser. When I wrote the JavaScript Function Plotter, I wanted a better alternative to using JavaScript’s eval function. There’s no security risk currently, because you can only run code in your own browser, but it’s not as convenient for math (Math.pow(2^x) instead of 2^x, etc.).

Then your code will be like that:

console.info ( Parser.evaluate( "2 * (3 + 4)" ) ); //prints 14

The source code is on GitHub and it's published on npm as expr-eval. Can be used like so:

import { Parser } from 'expr-eval';

console.log(Parser.evaluate("2 * (3 + 4)")); // 14
like image 53
Maxym Avatar answered Oct 01 '22 09:10

Maxym
Sign in to Comment

Related questions

How to replace an apostrophe in a string in Javascript?
How to use a button's "data-" attribute to call a selected JavaScript function
drawing circle with radius specified in meters on a map
Jquery click event not firing on the element created dynamically using jquery
jquery set all checkbox checked
How to pass extra data down a Parse Promise chain [duplicate]
HTML5: Detecting if you're on mobile or pc with javascript? [duplicate]
Check if function returns true to execute another function
xhttp is not defined when using ajax calls into an iframe
angular-ui-bootstrap upgrade 1.3.3 to 2.0.0 missing uibAccordionGroup controller
Destructuring with nested objects and default values
Access-Control-Allow-Origin not working Google Cloud Functions GCF
chaining `fs.readdir` with a `.then` to return an array
How to use Jest with jsdom to test console.log?
Make pristine Angular form control dirty [duplicate]
Object.entries() alternative for Internet Explorer and ReactJS
forEach on querySelectorAll not working in recent Microsoft browsers
Wait promise inside for loop
Vuex - Update an entire array
VueJS Using Prop Type Validation With NULL and 'undefined' Values?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!