• Timo Teräs's avatar
    do not extract files with malicious name · 997aa99e
    Timo Teräs authored
    the security implications are not as high as compared to regular
    tar/unzip archiver. this is because you are anyway trusting
    the package to install files anywhere in the filesystem.
    
    this serves rather as a sanity to check against errors in created
    package.
    997aa99e
database.c 73.8 KB