While working with pipelines Project, I found a Zipslip vulnerability in the artifact extraction process. The issue allows attackers to craft malicious tar.gz files containing path traversal sequences that result in unauthorized file creation or modification in system directories such as /etc.

CVE Link
CVE Report