Chris Brannon

**Name of the Vulnerable Software and Affected Versions** awful-salmonella-tar versions prior to 0.0.4 **Description** A ..%2F path traversal vulnerability exists in the path handler of awful-salmonella-tar. Attackers can only list directories, not read files. This occurs because the `safe-path?` Scheme predicate is not used for directories. **Recommendations** For versions prior to 0.0.4, update to version 0.0.4 or later to resolve the issue. As a temporary workaround, consider restricting access to the path handler to minimize the risk of exploitation.