urlize and urlizetrunc were subject to a potential denial-of-service attack via very large inputs with a specific sequence of characters.