Another important point is that the attacker already has the ability to affect the decompressed output, since they are presumably responsible for the compressed input.
Depending on how you set things up you might use one sandbox to perform multiple decompression calls, so the attacker might be able to mangle someone else's data. But yes, if you set up a new sandbox for each inflate you're safe.
