I'm concerned about files with very low entropy being decompressed into very large in memory objecst.
This might not even be an intended bomb.
I feel like we building a frame we should have a target frame size but also an upper limit on the size of un compressed data that we attempt
to place into a frame.
If we do this we also get some protection from zlib bombs as we will refurse to de-compress a frame beyound the targeted upper limit size - because that represents and invalid file.
I'm concerned about files with very low entropy being decompressed into very large in memory objecst.
This might not even be an intended bomb.
I feel like we building a frame we should have a target frame size but also an upper limit on the size of un compressed data that we attempt
to place into a frame.
If we do this we also get some protection from zlib bombs as we will refurse to de-compress a frame beyound the targeted upper limit size - because that represents and invalid file.