I don't like code inside data. I think it is the most important causes of security issues ever.
A letter is a letter. A picture is a picture. A movie is a movie. A spreadsheet is just a bunch of numbers. They are data. They are passive. When I download a letter, a jpeg, a movie or a spreadsheet, I want that data to be just data. And I want it to be passive. I don't want it ever to execute any code. I also would like my webpages to be passive. I want my emails to be passive.
I should only download something that can be active, if I explicitly download a program. When I download an executable. A game. A shell-script or python-script. And I want it to be clear that it is a program I am downloading. Fck Microsoft for hiding file extensions. Fck browers for hiding the real URL of the page I am visiting. I use NoScript, and half the websites I encounter will display nothing unless I turn on Javascript. I hate all that. I hate it with a passion.
But if you really really really insist on being a dick, and put an active programming component inside your passive data, then Python is a good choice.