It might not be obvious when you hit that point, bad regexes can be subtle, just see that old cloudflare postmortem.

Even simple regexs can be problematic, e.g. Gitlab RCE bug through ExifTools

https://devcraft.io/2021/05/04/exiftool-arbitrary-code-execu...

> "a\ > ""

> The second quote was not escaped because in the regex $tok =~ /(\\+)$/ the $ will match the end of a string, but also match before a newline at the end of a string, so the code thinks that the quote is being escaped when it’s escaping the newline.

...and if you can understand them then you clearly understand regex enough not to need ChatGPT to write them

I understand assembly too.

The only time you'd want to write assembly in production code would be if you need to hand roll some optimisation. So I don't really understand your point here,