From 5e4bb41f0743379b0eafef7a36c9a1d2d7b56708 Mon Sep 17 00:00:00 2001
From: Roberto Rosario <Roberto.Rosario.Gonzalez@gmail.com>
Date: Mon, 25 Jul 2011 03:40:59 -0400
Subject: [PATCH] Use literal_eval instead of eval

---
 apps/sources/managers.py | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/apps/sources/managers.py b/apps/sources/managers.py
index e27a6468a9..53aa143d5b 100644
--- a/apps/sources/managers.py
+++ b/apps/sources/managers.py
@@ -1,3 +1,5 @@
+from ast import literal_eval
+
 from django.db import models
 from django.contrib.contenttypes.models import ContentType
 
@@ -15,10 +17,10 @@ class SourceTransformationManager(models.Manager):
                 transformations.append(
                     {
                         'transformation': transformation['transformation'],
-                        'arguments': eval(transformation['arguments'], {})
+                        'arguments': literal_eval(transformation['arguments'].strip())
                     }
                 )
-            except Exception, e:
+            except (ValueError, SyntaxError), e:
                 warnings.append(e)
         
         return transformations, warnings