Vulnerabilities in static-eval 2.0.0