rspec/rules/S6096/common/fix/code-rationale.adoc


			
				
					
						
						
						
							
							
							The following code is vulnerable to Zip Slip as it is constructing a path using an archive entry name. This path is then used to copy a file without being validated first. Therefore, it can be leveraged by an attacker to overwrite arbitrary files.
						
						
					
				
				
					
						Reference in New Issue
					
					View Git Blame
					Copy Permalink