Jayasuryajsk

**Name of the Vulnerable Software and Affected Versions** Zed versions prior to 0.224.4 **Description** The extension installer in Zed allows tar/gzip downloads. Prior to version 0.224.4, the tar extractor uses `async tar::Archive::unpack` which creates symlinks from the archive without validation. The path guard `writeable path from extension` performs lexical prefix checks without resolving symlinks. An attacker can ship a tar archive that creates a symlink inside the extension workdir pointing outside, then writes files through the symlink, causing writes to arbitrary host paths. This escapes the extension sandbox and enables code execution. **Recommendations** Update to Zed version 0.224.4 or later.