- Excellent of the author to call these things out.
- All 3 things are show stoppers for any real use.
An unstable format which trusts input is a CVE and data loss magnet.
That is a bit too harsh. Not all applications require those guarantees. It’s fine if you can trust the inputs.
I'll be resolving issues 2 and 3 in the next couple of weeks (adding a safe decoder and doing a lot of fuzzing).
The format, however, might continue to change for some time because I want to push performance even further.