eslint/no-eval Restriction

What it does

Disallows referencing the 'eval' function.

Why is this bad?

Calling 'eval' is not supported in some secure contexts and can lead to vulnerabilities.

Example

const someString = "console.log('pwned')";
eval(someString);

References

• Rule Source