DevTools: Don't allow native global functions in injected script.

Source/devtools/scripts/check_injected_script_source.py

Index: Source/devtools/scripts/check_injected_script_source.py
diff --git a/Source/devtools/scripts/check_injected_script_source.py b/Source/devtools/scripts/check_injected_script_source.py
index 18d1e8a542888f8eca3b0b7f923eb6e767c732b2..0119988318688d944d9f23e01be939de7ad66549 100755
--- a/Source/devtools/scripts/check_injected_script_source.py
+++ b/Source/devtools/scripts/check_injected_script_source.py
@@ -45,12 +45,18 @@ def validate_injected_script(fileName):
         "apply", "bind", "call", "isGenerator", "toSource",
     ])
 
+    global_functions = "|".join([
+        "eval", "uneval", "isFinite", "isNaN", "parseFloat", "parseInt", "decodeURI", "decodeURIComponent",
+        "encodeURI", "encodeURIComponent", "escape", "unescape",
+    ])
+
     # Black list:
     # - Object.prototype.toString()
     # - Array.prototype.*
     # - Function.prototype.*
     # - Math.*
-    black_list_call_regex = re.compile(r"\bMath\.\w+\(|\.(toString|" + proto_functions + r")\(")
+    # - Global functions
+    black_list_call_regex = re.compile(r"\bMath\.\w+\(|\.(toString|" + proto_functions + r")\(|[^\.]\b(" + global_functions + r")\(")
 
     errors_found = False
     for i, line in enumerate(lines):