Potential fix for code scanning alert no. 5: Arbitrary file access during archive extraction ("Zip Slip")

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>

Author: janblom

src/test/java/org/ohdsi/usagi/TestUtils.java

@@ -11,14 +11,19 @@
 
 public class TestUtils {
     public static void unzipResource(String resourceName, Path targetDir) throws IOException {
+        Path targetDirNormalized = targetDir.toAbsolutePath().normalize();
         try (InputStream is = TestUtils.class.getResourceAsStream(resourceName)) {
             if (is == null) {
                 throw new IOException("Resource not found: " + resourceName);
             }
             try (ZipInputStream zis = new ZipInputStream(is)) {
                 ZipEntry entry;
                 while ((entry = zis.getNextEntry()) != null) {
-                    File newFile = new File(targetDir.toFile(), entry.getName());
+                    Path resolvedPath = targetDirNormalized.resolve(entry.getName()).normalize();
+                    if (!resolvedPath.startsWith(targetDirNormalized)) {
+                        throw new IOException("Entry is outside of the target dir: " + entry.getName());
+                    }
+                    File newFile = resolvedPath.toFile();
                     if (entry.isDirectory()) {
                         newFile.mkdirs();
                     } else {