Thank you to the authors for the hard work on this draft. 

"Parsers of CRI references must operate on input that is assumed to be untrusted. This means that parsers MUST fail gracefully in the face of malicious inputs. Additionally, parsers MUST be prepared to deal with resource exhaustion (e.g., resulting from the allocation of big data items) or exhaustion of the call stack 
(stack overflow). See Section 10 of RFC 8949 [STD94] for additional security considerations relating to CBOR."

Aside from failing gracefully, can we suggest to include mitigations like sandbox the parser to avoid Code Execution ?