CVE-2026-22870

Name of the Vulnerable Software and Affected Versions GuardDog versions prior to 2.7.1

Description GuardDog, a CLI tool for identifying malicious PyPI packages, contains a flaw in its safe extract() function. This function does not validate the size of decompressed files when handling ZIP archives, such as wheels and eggs. This can lead to a denial of service as attackers can utilize zip bombs – small compressed files that expand to consume excessive disk space, potentially gigabytes from a few megabytes of compressed data.

Recommendations Update to GuardDog version 2.7.1 or later.