v0.16.4

Release generated at commit: 4b1770f
This release patches a theoretical path traversal out of bounds for overrides in malicious mrpack files, in case the underlying code handling the zip archive allows non-standard relative path elements (like double-dot syntax).