diff --git a/pom.xml b/pom.xml
index 80a858d595..cf6329d38e 100644
--- a/pom.xml
+++ b/pom.xml
@@ -48,6 +48,7 @@
1.14
2.3.1.RELEASE
5.2.8.RELEASE
+ 2.8.0
48540ECBBF00A28EACCF04E720FD12AFB0C9EBA9
${env.GPG_PASSPHRASE}
@@ -97,6 +98,11 @@
commons-compress
${apache.commons.compress}
+
+ commons-io
+ commons-io
+ ${apache.commons.io}
+
com.google.guava
guava
diff --git a/util/pom.xml b/util/pom.xml
index a886cea0c9..f64e9f90f2 100644
--- a/util/pom.xml
+++ b/util/pom.xml
@@ -38,6 +38,10 @@
org.apache.commons
commons-lang3
+
+ commons-io
+ commons-io
+
com.google.guava
guava
diff --git a/util/src/main/java/io/kubernetes/client/Copy.java b/util/src/main/java/io/kubernetes/client/Copy.java
index 72e02bc592..8ea56ca283 100644
--- a/util/src/main/java/io/kubernetes/client/Copy.java
+++ b/util/src/main/java/io/kubernetes/client/Copy.java
@@ -35,6 +35,7 @@
import org.apache.commons.compress.archivers.tar.TarArchiveInputStream;
import org.apache.commons.compress.archivers.tar.TarArchiveOutputStream;
import org.apache.commons.compress.compressors.gzip.GzipCompressorInputStream;
+import org.apache.commons.io.FilenameUtils;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
@@ -137,7 +138,11 @@ public void copyDirectoryFromPod(
log.error("Can't read: " + entry);
continue;
}
- File f = new File(destination.toFile(), entry.getName());
+ String normalName = FilenameUtils.normalize(entry.getName());
+ if (normalName == null) {
+ throw new IOException("Invalid entry: " + entry.getName());
+ }
+ File f = new File(destination.toFile(), normalName);
if (entry.isDirectory()) {
if (!f.isDirectory() && !f.mkdirs()) {
throw new IOException("create directory failed: " + f);