It is recommended not to use binary_to_term. what is the secure way to use it.
Since binary_to_term
is Erlang
API I would recommend to read :erlang
module documentation:
http://erlang.org/doc/man/erlang.html#binary_to_term-2
This may help: https://erlef.github.io/security-wg/secure_coding_and_deployment_hardening/serialisation
3 Likes