Precondition

• I checked the issues list for existing open or closed reports of the same problem.

Version of dependency-check used
The problem occurs using version 12.1.6 on Linux CLI.

Describe the bug
The console logs report the following:
`[INFO] Analysis Started

[ERROR] Exception reading archive 'project.tgz'.

[WARN] An error occurred while analyzing '/home/pipelineuser/project.tgz' (Archive Analyzer): Extra subfield lenght exceeds remaining bytes in extra: 21064 > 37

[INFO] Finished Archive Analyzer (1 seconds)`

Other observations

We see that DC 12.1.6 uses apache commons - commons-compress-1.28.0.jar

There is a bug report in Apache Compress with regards similar errors:
GZip IOException: Extra subfield lenght exceeds remaining bytes in extra field

In which the report mentions "Extra subfield lenght exceeds remaining bytes in extra: 21064 > 37".

Given the wording in both cases, suggests it's a dependency problem ( commons-compress-1.28.0 ).
The ticket marks it resolved at compress 1.29.0

We have previously used DC 12.1.3 and don't recall seeing this archive issue with that and it uses commons-compress-1.27.1.jar.