diff --git a/src/Normalizers/NormalizeSerialize.php b/src/Normalizers/NormalizeSerialize.php
index f4c5200..939a6b8 100644
--- a/src/Normalizers/NormalizeSerialize.php
+++ b/src/Normalizers/NormalizeSerialize.php
@@ -62,7 +62,7 @@ public function run()
         if (version_compare(PHP_VERSION, '7.0.0') >= 0) {
             //options added @ v 7.0 which allow no evaluating for classes
             //object will be instantiated as __PHP_Incomplete_Class
-            $decoded = @unserialize($this->value);
+            $decoded = @unserialize($this->value, false);
         } else {
             $decoded = false; //don't serialize it might be danger
         }