VYPR

PyPI package

pyzipper

pkg:pypi/pyzipper

Vulnerabilities (1)

  • CVE-2026-44722May 14, 2026
    affected < 0.4.0fixed 0.4.0

    ### Impact A Python operator precedence bug in pyzipper/zipfile_aes.py caused the AE-2 format to never be automatically selected during encryption, regardless of file size or compression type. As a result, all encrypted entries are written in AE-1 format unless AE-2 is explicitly