Product SiteDocumentation Site

2.4. Serialization in Ruby

Deserialization of untrusted data has been on the top of critical vulnerabilities in 2013 (prominent examples are deserialization issues found in Ruby on Rails, see CVE-2013-0156, CVE-2013-0277 or CVE-2013-0333). There are several ways how to serialize objects in Ruby: