This gist demonstrates an attack using Pandas AI. PandasAI is a library which allows users to interact with data in a pandas dataframe with natural language. PandasAI can also do some other interesting things like generate features for machine learning, create visualizations etc. The complete documentation is available here: https://pandas-ai.readthedocs.io/en/latest/.
From the user's perspective, this means that a user could simply write some code to read data into a dataframe, and then ask the data a question. Something like this:
df = pd.read_csv('mydata.csv')
pandas_ai(df, "Which are my five best selling products?")