...
In this compliant solution, the code inside the while loop tracks the uncompressed file size of each entry in a zip archive while extracting the entry. It throws an exception if the entry being extracted is too large — about 100MB in this case. We do not use the ZipEntry.getSize() method because the value it reports is not reliable. Note that we validate the name of the file specified in the zip entry before using it to create a new file. We do not trust the source of the zip file, so this validation is done performed in compliance with rule IDS00-J. Sanitize untrusted data passed across a trust boundary.
...
<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="6fe27ef6ad6de084-e6f80098-43e44986-a8de8223-e1adf50410581cec54825636"><ac:plain-text-body><![CDATA[ | [[Mahmoud 2002 | AA. References#Mahmoud 02]] | [Compressing and Decompressing Data Using Java APIs | http://java.sun.com/developer/technicalArticles/Programming/compression/] | ]]></ac:plain-text-body></ac:structured-macro> |
...