Firebase functions insecure deserialization

Identifies functions that blindly trust and process complex serialized objects (e.g., JSON from Pub/Sub messages or HTTP bodies) from untrusted sources without thorough validation of their structure and content. This can lead to unexpected behavior, errors, or security vulnerabilities if object properties control logic or resource access.