pnpm: Binary ZIP extraction allows arbitrary file write via path traversal (Zip Slip)

Moderate severity GitHub Reviewed Published Jan 26, 2026 in pnpm/pnpm • Updated Jan 28, 2026

No open alerts for this advisory

Give feedback on Dependabot alerts