AI-Generated Insecure Deserialization Review Rules
No required blockers for this preset.
64/100
Collect package checksum or signed artifact information.
rules/ai-generated-insecure-deserialization-review-rules · trust review · confidence 83%
Adoption queue
0/1 visible results are ready for staged adoption under this preset.
No required blockers for this preset.
64/100
Collect package checksum or signed artifact information.
rules/ai-generated-insecure-deserialization-review-rules · trust review · confidence 83%
Decision confidence
0/1 results are high-confidence for the selected preset.
Address Package integrity before broader rollout.
68/100
rules/ai-generated-insecure-deserialization-review-rules · trust review
Source-backed rules for reviewing AI-generated code that deserializes data before merge for insecure deserialization risk, covering native serialization formats (pickle, PyYAML, Java Serializable) that can execute arbitrary code on untrusted input, safe data-interchange alternatives, and class allowlisting/integrity checks when native formats can't be avoided.