{"library":"fickling","type":"library","category":null,"description":"Fickling is a static analyzer and interpreter for Python pickle data. It identifies dangerous modules, functions, and attributes used within pickle files to prevent arbitrary code execution vulnerabilities. The current version is 0.1.10, and it maintains an active release cadence, frequently publishing security updates and expanded blocklists.","language":"python","status":"active","version":"0.1.10","tags":["security","static analysis","pickle","serialization","vulnerability detection"],"last_verified":"Fri May 22","install":[{"cmd":"pip install fickling","imports":["from fickling.analysis import analyze_pickle","from fickling.interpretation import interpret_pickle","from fickling.errors import UnsafeError"]},{"cmd":"pip install fickling[pytorch]","imports":[]}],"homepage":"https://pypi.org/project/fickling","github":"https://github.com/trailofbits/fickling","docs":null,"changelog":null,"pypi":"https://pypi.org/project/fickling/","npm":null,"openapi_spec":null,"status_page":null,"smithery":null,"compatibility":{"summary":{"python_range":"3.10–3.9","success_rate":100,"avg_install_s":1.6,"avg_import_s":null,"wheel_type":"wheel"},"url":"https://checklist.day/v1/registry/fickling/compatibility"}}