Consulte enlace .
Vale la pena mencionar que el problema es con los estándares de cifrado del formato zip, no con el comando zip
.
Además, la página de manual de zip
señala este problema.
-P password
--password password
Use password to encrypt zipfile entries (if any). THIS IS
INSECURE! Many multi-user operating systems provide ways for
any user to see the current command line of any other user;
even on stand-alone systems there is always the threat of
over-the-shoulder peeking. Storing the plaintext password as
part of a command line in an automated script is even worse.
Whenever possible, use the non-echoing, interactive prompt to
enter passwords. (And where security is truly important, use
strong encryption such as Pretty Good Privacy instead of the
relatively weak standard encryption provided by zipfile util‐
ities.)
Para obtener documentación más completa sobre este tema, eche un vistazo a este documento (escrito por un profesor de mi universidad :)) enlace