The Snyk Security Research Team at Snyk.io reached out, and pointed out that the File.unzip method was vunerable to a ZipSlip, whereby a specially crafted zip file could write files outside of the destination folder...
See https://snyk.io/research/zip-slip-vulnerability for more info
This release fixes the vulnerability