Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Update issues.py #216

Open
wants to merge 2 commits into
base: main
Choose a base branch
from
Open

Update issues.py #216

wants to merge 2 commits into from

Conversation

itsmenick212
Copy link

  1. Protocol Anomalies (PROTO Opcode): Detects multiple or misplaced PROTO opcodes, which could indicate file tampering or incorrect usage. It flags duplicate PROTO opcodes or PROTO not being the first opcode for higher protocol versions.
  2. Unused Variables: Flags variables that are serialized but never used, which can point to inefficient serialization or possibly hidden, unnecessary data.
  3. Invalid Opcodes: Identifies opcodes that are not recognized as valid, signaling that the pickle file might be corrupted or tampered with.
  4. Unsafe Loaders: Detects the use of potentially dangerous functions (like pickle.loads()) that could execute arbitrary code, preventing security risks in untrusted pickle files.

1. Protocol Anomalies (PROTO Opcode):
Detects multiple or misplaced PROTO opcodes, which could indicate file tampering or incorrect usage. It flags duplicate PROTO opcodes or PROTO not being the first opcode for higher protocol versions.
2. Unused Variables:
Flags variables that are serialized but never used, which can point to inefficient serialization or possibly hidden, unnecessary data.
3. Invalid Opcodes:
Identifies opcodes that are not recognized as valid, signaling that the pickle file might be corrupted or tampered with.
4. Unsafe Loaders:
Detects the use of potentially dangerous functions (like pickle.loads()) that could execute arbitrary code, preventing security risks in untrusted pickle files.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant