sc-deserialization
CommunityDetect insecure deserialization across formats.
Software Engineering#security#vulnerability#python#java#multilanguage#deserialization#pattern-search
Authorersinkoc
Version1.0.0
Installs0
System Documentation
What problem does it solve?
Insecure deserialization vulnerabilities can lead to remote code execution, data tampering, or authentication bypass. This Skill provides detection across multiple serialization formats and programming languages to help you identify risky patterns early.
Core Features & Use Cases
- Cross-language pattern discovery across Python (pickle), Java (ObjectInputStream), PHP (unserialize), .NET (BinaryFormatter), Ruby (Marshal), Node.js (serialization), and YAML/XML deserialization.
- Verification and risk scoring to reduce false positives and prioritize remediation.
- Guidance for secure alternatives and progressive hardening per ecosystem.
Quick Start
Analyze a project to surface insecure deserialization risks and generate a prioritized remediation plan.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: sc-deserialization Download link: https://github.com/ersinkoc/security-check/archive/main.zip#sc-deserialization Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.