glue_safe

glue_data_safe

<code>glue_safe()</code> and <code>glue_data_safe()</code> differ from <code>glue()</code> and <code>glue_data()</code>
in that the safe versions only look up symbols from an environment using
<code><a href="/link/get()?package=glue&version=1.8.0" data-mini-rdoc="glue::get()">get()</a></code>. They do not execute any R code. This makes them suitable for use
with untrusted input, such as inputs in a Shiny application, where using the
normal functions would allow an attacker to execute arbitrary code.

An implementation of interpreted string literals, inspired by
Python's Literal String Interpolation
<https://www.python.org/dev/peps/pep-0498/> and Docstrings
<https://www.python.org/dev/peps/pep-0257/> and Julia's Triple-Quoted
String Literals
<https://docs.julialang.org/en/v1.3/manual/strings/#Triple-Quoted-String-Literals-1>.

Jennifer Bryan

glue

Interpreted String Literals

Jim Hester

Posit Software, PBC 

glue_safe function

<dl><dt>...</dt>
<dd>[<code>expressions</code>] Unnamed arguments are taken to be expression
string(s) to format. Multiple inputs are concatenated together before formatting.
Named arguments are taken to be temporary variables available for substitution.
For <code>glue_data()</code>, elements in <code>...</code> override the values in <code>.x</code>.</dd>
<dt>.envir</dt>
<dd>[<code>environment</code>: <code><a href="/link/parent.frame()?package=glue&version=1.8.0" data-mini-rdoc="glue::parent.frame()">parent.frame()</a></code>] Environment to evaluate each expression in. Expressions are
evaluated from left to right. If <code>.x</code> is an environment, the expressions are
evaluated in that environment and <code>.envir</code> is ignored. If <code>NULL</code> is passed, it is equivalent to <code><a href="/link/emptyenv()?package=glue&version=1.8.0" data-mini-rdoc="glue::emptyenv()">emptyenv()</a></code>.</dd>
<dt>.x</dt>
<dd>[<code>listish</code>] An environment, list, or data frame used to lookup values.</dd></dl>

Arguments

<code>glue_safe()</code> and <code>glue_data_safe()</code> differ from <code>glue()</code> and <code>glue_data()</code>
in that the safe versions only look up symbols from an environment using
<code><a href='https://rdrr.io/r/base/get.html'>get()</a></code>. They do not execute any R code. This makes them suitable for use
with untrusted input, such as inputs in a Shiny application, where using the
normal functions would allow an attacker to execute arbitrary code.

Safely interpolate strings — glue_safe

<dl>

<dt>...</dt>
<dd>[<code>expressions</code>] Unnamed arguments are taken to be expression
string(s) to format. Multiple inputs are concatenated together before formatting.
Named arguments are taken to be temporary variables available for substitution.
For <code>glue_data()</code>, elements in <code>...</code> override the values in <code>.x</code>.</dd>


<dt>.envir</dt>
<dd>[<code>environment</code>: <code><a href='https://rdrr.io/r/base/sys.parent.html'>parent.frame()</a></code>] Environment to evaluate each expression in. Expressions are
evaluated from left to right. If <code>.x</code> is an environment, the expressions are
evaluated in that environment and <code>.envir</code> is ignored. If <code>NULL</code> is passed, it is equivalent to <code><a href='https://rdrr.io/r/base/environment.html'>emptyenv()</a></code>.</dd>


<dt>.x</dt>
<dd>[<code>listish</code>] An environment, list, or data frame used to lookup values.</dd>

</dl>

glue_safe: Safely interpolate strings

Description

Usage

Value

Arguments

Examples