Scriban
dotnet · ScribanHeads-up
Scriban: Array multiplication operator missing LoopLimit check enables DoS via excessive allocation
The array multiplication operator (`array * integer`) in Scriban allocates a result array of size `intModifier * array.
27 Jun 2026 · schedule it
dotnet · ScribanHeads-up
Scriban ExpressionDepthLimit bypass leads to StackOverflowException
The ExpressionDepthLimit parser guard in Scriban does not halt recursion; it only logs a non-fatal error.
27 Jun 2026 · schedule it