New warning in build logs: Insecure world writable dir /usr/local/clang-5.0.0/bin

[bogdanap]

I've noticed that there's a new warning that appears in recent build-logs (probably after #890 was merged):

/home/travis/filter.rb:43: warning: Insecure world writable dir /usr/local/clang-5.0.0/bin in PATH, mode 040777

Example build: https://travis-ci.org/travis-infrastructure/packer-build/jobs/299997045#L6

[bogdanap]

Also reported here: travis-ci/travis-ci#8645

[BanzaiMan]

As I commented in travis-ci/travis-ci#8892 (comment), the issue here is that the clang 5.0.0 archive is faulty. While travis-ci/travis-build#1272 provides a run-time fix, it would be a good idea to ensure that components added to $PATH in the cookbooks are not world-writable.

[scribam]

Would you mind checking if this issue is solved with the PR #970?
The permissions in the clang 5.0.1 archive file seems to be more restrictive compared to the version 5.0.0.