The threat-model there is that the attacker controls the text that is parsed.