Description

This PR introduces a secure and configurable unzip handler to FileBrowser. It adds server‑level configuration options with sensible defaults and enforces multiple safety checks to prevent ZIP bombs, path traversal, and denial‑of‑service scenarios.
The zip file extraction function is disabled by default and can be enabled by using the --unzipEnabled flag or by enabling it through filebrowser config set.

Key changes

1. New server configuration fields with defaults:

• MaxZipFileSize (default: 5GB): Maximum size of zip files that can be extracted (large files may cause DoS attacks).
• MaxZipFileEntries (default: 100k files): Maximum number of files in the zip archive (zip archives with too many files can trigger DoS attacks).
• MaxTotalUncompressedSize (default: 20GB): This is the disk space that the file will occupy once it is fully decompressed (a necessary check to avoid completely filling up the available disk space and crashing the system).
• MaxUncompressedSizeRate (default: 0.01 → 1%): The ratio between the size of each compressed and uncompressed file (prevents zip bomb attacks). Some malicious files (zip bombs) can "lie" about their uncompressed size, so every time a file is extracted from the zip archive, it is checked that the size it occupies on the disk matches the size declared in the zip file (if they don't match, the zip file "lies" and the extraction is stopped immediately because it is considered a corrupt or malicious file).
• MaxUncompressedFileSize (default: 5GB): Maximum size that each uncompressed file can occupy (avoids using up all available disk space and crashing the system).

2. Unzip handler implementation:

• Validates permissions and destination paths.
• Prevents Zip Slip attacks by sanitizing and rejecting absolute/relative escape paths.
• Enforces limits on compressed size, uncompressed size, number of entries, and compression ratio.
• Uses io.LimitReader to guard against infinite streams and oversized files.
• Provides clear error handling with user feedback.

3. Defaults integrated into server initialization so they can be overridden via configuration.

• In other words, in older instances of filebrowser configurations where newer configurations do not exist, default values ​​are used to avoid incompatibilities with databases or configuration files from previous versions.

Additional Information

Extracting compressed files is a highly requested feature in the project, and an optional, clear, and secure implementation is necessary for some users.

Checklist

Before submitting your PR, please indicate which issues are either fixed or closed by this PR. See GitHub Help: Closing issues using keywords.

• I am aware the project is currently in maintenance-only mode. See README
• I am aware that translations MUST be made through Transifex and that this PR is NOT a translation update
• I am making a PR against the master branch.
• I am sure File Browser can be successfully built. See builds and development.