Unvalidated expansion of archive files High

Failing to control the ratio between compressed and uncompressed data, define the threshold for the maximum total size of the uncompressed data, or count the number of file entries extracted from the files could make your code vulnerable to zip bomb attacks. Zip bomb attacks cause excessive resource consumption to uncompress the archive files, which could potentially cause denial of service (DoS).

Detector ID
typescript/do-not-expand-archive-files-without-validating@v1.0
Category
Common Weakness Enumeration (CWE) external icon