So the problem with literal_eval is that it only supports literals. Literals are things like writing a number, string, lists or tuples using their respective syntax. However, you are correct in eval being very unsafe.
I found this project which might be useful or work as inspiration, as it is MIT licensed: github.com/danthedeckie/simpleeval
We're a place where coders share, stay up-to-date and grow their careers.
We strive for transparency and don't collect excess data.