Nothing really fatal here and the potentially most problematic script - aliased.php - crashes early, however the overall quality of this stuff is low and e.g. http://en.wikipedia.org/static/1.26wmf7/extensions/SyntaxHighlight_GeSHi/geshi/contrib/langcheck.php takes 5-6 seconds to execute with no means to throttle, thus being a stealthy DoS vector.
|Resolved||None||T101608 GeSHi's contrib directory is exposed on appservers|
Was there a specific commit removing it that we can backport, or was that included in the move to pygments? If the latter, let's remove or address the langcheck.php script specifically as a DoS for the older versions.