Closed carlosame closed 4 months ago
A static method in the ClassFileUtilities class is vulnerable to a "Zip Slip" attack, see security/code-scanning#32. That method isn't used at all by the main EchoSVG code so the security impact is minimal, almost zero.
ClassFileUtilities
Tracking issue for:
A static method in the
ClassFileUtilities
class is vulnerable to a "Zip Slip" attack, see security/code-scanning#32. That method isn't used at all by the main EchoSVG code so the security impact is minimal, almost zero.Tracking issue for: