I'm building a corporate web system in Python which allows scripts to be uploaded and run serverside. I'm using Python as it is a simple language to write the scripts in. However, there is a security hazard there, I want to block all function calls except a limited subset. Is there a mechanism I can use to do this, or some other technique? Do I need to use something else like Lua?
Please help me with this.