From 930b79cc9866ddaf73a0331c6901ad3cc9164309 Mon Sep 17 00:00:00 2001
From: orbisai0security <mediratta01.pally@gmail.com>
Date: Wed, 12 Nov 2025 03:47:18 +0000
Subject: [PATCH] fix:
 semgrep_python.lang.security.audit.eval-detected.eval-detected_apps/slack_data/slack_mcp_reader.py_157

---
 apps/slack_data/slack_mcp_reader.py | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/apps/slack_data/slack_mcp_reader.py b/apps/slack_data/slack_mcp_reader.py
index 71fa457..843718d 100644
--- a/apps/slack_data/slack_mcp_reader.py
+++ b/apps/slack_data/slack_mcp_reader.py
@@ -10,6 +10,7 @@ flexible message processing options.
 import asyncio
 import json
 import logging
+import ast
 from typing import Any, Optional
 
 logger = logging.getLogger(__name__)
@@ -146,7 +147,7 @@ class SlackMCPReader:
                     match = re.search(r"'error':\s*(\{[^}]+\})", str(e))
                     if match:
                         try:
-                            error_dict = eval(match.group(1))
+                            error_dict = ast.literal_eval(match.group(1))
                         except (ValueError, SyntaxError, NameError):
                             pass
                     else:
@@ -154,7 +155,7 @@ class SlackMCPReader:
                         match = re.search(r"Failed to fetch messages:\s*(\{[^}]+\})", str(e))
                         if match:
                             try:
-                                error_dict = eval(match.group(1))
+                                error_dict = ast.literal_eval(match.group(1))
                             except (ValueError, SyntaxError, NameError):
                                 pass