{"id":20163403,"url":"https://github.com/sjinks/php-disable-eval","last_synced_at":"2025-04-10T00:36:41.473Z","repository":{"id":38040017,"uuid":"410371210","full_name":"sjinks/php-disable-eval","owner":"sjinks","description":"Disable eval() and create_function() in PHP","archived":false,"fork":false,"pushed_at":"2025-01-20T13:38:48.000Z","size":181,"stargazers_count":4,"open_issues_count":2,"forks_count":1,"subscribers_count":2,"default_branch":"master","last_synced_at":"2025-03-24T02:22:21.608Z","etag":null,"topics":["eval","php","php-extension","security"],"latest_commit_sha":null,"homepage":"","language":"PHP","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/sjinks.png","metadata":{"funding":{"custom":["https://www.paypal.com/donate/?hosted_button_id=SAG6877JDJ3KU","https://send.monobank.ua/jar/7rosVfiwKM"]},"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2021-09-25T20:05:49.000Z","updated_at":"2025-03-04T20:44:44.000Z","dependencies_parsed_at":"2024-03-02T21:26:28.556Z","dependency_job_id":"2aa593f2-376b-43f0-9f20-94c3689d62c4","html_url":"https://github.com/sjinks/php-disable-eval","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sjinks%2Fphp-disable-eval","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sjinks%2Fphp-disable-eval/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sjinks%2Fphp-disable-eval/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sjinks%2Fphp-disable-eval/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/sjinks","download_url":"https://codeload.github.com/sjinks/php-disable-eval/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":248137998,"owners_count":21053774,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["eval","php","php-extension","security"],"created_at":"2024-11-14T00:29:29.831Z","updated_at":"2025-04-10T00:36:41.464Z","avatar_url":"https://github.com/sjinks.png","language":"PHP","readme":"# php-disable-eval\n\n[![Build and Test](https://github.com/sjinks/php-disable-eval/actions/workflows/test.yml/badge.svg)](https://github.com/sjinks/php-disable-eval/actions/workflows/test.yml)\n[![Quality Gate Status](https://sonarcloud.io/api/project_badges/measure?project=sjinks_php-disable-eval\u0026metric=alert_status)](https://sonarcloud.io/dashboard?id=sjinks_php-disable-eval)\n\nA PHP extension to disable `eval()` and `create_function()`.\n\n## Installation\n\n```bash\nphpize\n./configure\nmake\nsudo make install\n```\n\nThen add\n\n```\nextension=disableeval.so\n```\n\nto your `php.ini`.\n\n## Configuration Options (php.ini)\n\n  * `disableeval.enabled` (boolean, default `On`): whether to enable the extension.\n  * `disableeval.intercept_compile_string` (boolean, default `On`): whether to use the `zend_compile_string` hook to detect the usage of `eval()`.\n  * `disableeval.aggressive` (boolean, default `Off`): whether to react to all evaluated code (even the one generated by extensions or SAPIs). Works together with `disableeval.intercept_compile_string`.\n  * `disableeval.mode` (integer, default 1): what to do on a policy violation:\n    * 1 (`DISABLEEVAL_MODE_THROW`): throw an `ErrorException` exception;\n    * 2 (`DISABLEEVAL_MODE_WARN`): display a warning;\n    * 3 (`DISABLEEVAL_MODE_SCREAM`): display a warning that cannot be suppressed with the `@` operator;\n    * 4 (`DISABLEEVAL_MODE_BAILOUT`): emit a fatal error and abort the script.\n\nFor security reasons, all options are [`PHP_INI_SYSTEM`](https://www.php.net/manual/en/configuration.changes.modes.php): that is, they can only be set in `php.ini` or `httpd.conf`.\n","funding_links":["https://www.paypal.com/donate/?hosted_button_id=SAG6877JDJ3KU","https://send.monobank.ua/jar/7rosVfiwKM"],"categories":[],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsjinks%2Fphp-disable-eval","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fsjinks%2Fphp-disable-eval","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsjinks%2Fphp-disable-eval/lists"}