@ariadne @js Yeah, so RCE *vector* but not a straight up RCE.
Can seem pedantic but I think it's a very different thing if you can extract, possibly make some checks and then execute, or "if you extract you risk executing malware".

(Although reminds me that pip is stuck ti extracting & executing setup.py but that's why I don't use it, it's architecturally unsafe)