fails:Array#pack resists CVE-2018-16396 by tainting output based on input
