Merge pull request #4 from BulkSecurityGeneratorProjectV2/fix/JLL/partial-path-traversal-vulnerability

[SECURITY] Fix Partial Path Traversal Vulnerability

Author: jlangch

src/main/java/com/github/jlangch/venice/impl/util/io/LoadPaths.java

@@ -258,7 +258,7 @@ private boolean isFileWithinDirectory(
         if (dir_.isDirectory()) {
             final File fl = new File(dir_, file.getPath());
             if (fl.isFile()) {
-                if (fl.getCanonicalPath().startsWith(dir_.getCanonicalPath())) {
+                if (fl.getCanonicalFile().toPath().startsWith(dir_.getCanonicalFile().toPath())) {
                     // Prevent accessing files outside the load-path.
                     // E.g.: ../../coffee
                     return true;