Skill

decompression-bomb

Detects decompression bomb vulnerabilities in JS/TS/Python/Go where compressed inputs expand to exhaust memory, targeting buffer-based decompression without size limits. Audit compression libs and file uploads.

Javascript

Typescript

Python

security

npx claudepluginhub byamb4/find-cve-agent

Tool Access

This skill uses the workspace's default tool permissions.

Preview

Audit archive/compression libraries, file upload handlers, content-encoding processors, and any package that decompresses user-supplied data.

Supporting Assets

references/false-positive-indicators.mdreferences/poc-skeleton.mdreferences/sinks.md

SKILL.md

Similar Skills

recursion-dos

Detects recursion DoS vulnerabilities like stack overflow and OOM in recursive parsers, tree walkers, serializers without depth limits. Audits JS/TS/Python/Go code via grep patterns and nested input tests.

3 files

find-cve-agent

sast-bandit

108

Scans Python code for security vulnerabilities and anti-patterns using Bandit SAST with CWE/OWASP mappings. Identifies secrets, injections, insecure APIs; generates CI/CD reports with remediation.

4 files

threatmodel-skills

pentest-memory-corruption

Use when performing penetration testing targeting memory corruption vulnerabilities in native applications. Keywords: buffer overflow, heap overflow, use-after-free, integer overflow, format string, stack overflow, type confusion, out-of-bounds read/write

1 file

vuln-skills

Stats

Stars18

Forks2

Last CommitMar 20, 2026

Actions

View Source View Plugin View on GitHub View README

Help us improve

Share bugs, ideas, or general feedback.

Decompression Bomb Detection

When to Use

Audit archive/compression libraries, file upload handlers, content-encoding processors, and any package that decompresses user-supplied data.

Key Insight

Buffer-based decompression is vulnerable: the entire decompressed output is loaded into memory at once. A 1KB compressed payload can expand to 1GB+.

Stream-based MAY have backpressure: but only if the consumer applies it. Many stream implementations still buffer the entire output.

Process

Step 1: Find Decompression Sinks

# JavaScript
grep -rn "zlib\.gunzip\|zlib\.inflate\|zlib\.unzip\|zlib\.brotli" .
grep -rn "gunzipSync\|inflateSync\|unzipSync\|brotliDecompress" .
grep -rn "pako\|fflate\|lz-string\|snappy" .
grep -rn "decompress\|decompressSync\|uncompress" .

# Python
grep -rn "zlib\.decompress\|gzip\.decompress\|bz2\.decompress" .
grep -rn "lzma\.decompress\|snappy\.decompress" .

# Go
grep -rn "gzip\.NewReader\|zlib\.NewReader\|flate\.NewReader" .
grep -rn "compress/gzip\|compress/zlib\|compress/flate" .

Step 2: Check for Size Limits

grep -rn "maxSize\|maxOutput\|maxLength\|MAX_SIZE\|outputLimit\|sizeLimit" .
grep -rn "ratio\|compressionRatio\|maxRatio" .

Step 3: Check Buffer vs Stream

Buffer-based (VULNERABLE):

zlib.gunzipSync(input)                    // Entire output in memory
zlib.gunzip(input, (err, result) => {})   // Callback with full buffer

Stream-based (CHECK):

input.pipe(zlib.createGunzip()).pipe(output)  // Streaming, may have backpressure

Even stream-based can be vulnerable if:

Output is collected into a buffer: const chunks = []; stream.on('data', c => chunks.push(c))
No backpressure is applied
Consumer reads faster than it can process

Step 4: Verify Exploitability

Can the attacker supply compressed data? (file upload, HTTP content-encoding, archive processing)
Is there an input size limit that would prevent the bomb?
Is there a decompressed size limit?
Is the process memory-limited?

CVSS Guidance

Unauthenticated OOM crash: HIGH 7.5
Authenticated OOM crash: MEDIUM 6.5
Stream-based with memory growth: MEDIUM 5.3
With input size limits that bound expansion: may not be exploitable

References

Sinks -- Decompression sinks by language
False Positive Indicators
PoC Skeleton