Skip to content

Krishna's Tech Blog

All Posts Learning Certifications Notices

Krishna's Tech Blog

Practical engineering knowledge from years of building real systems.

232 articles · 1,340 flashcards · 67 decks

Content

All Articles
Salesforce
AWS
Search

Learning

Flashcards
Quizzes
Certifications
Reading List

More

Notices
Glossary
Site Stats
RSS Feed

© 2026 Krishna's Tech Blog. Built with Next.js.Site Stats·RSS

←All articles

Banner for Regex Catastrophic Backtracking: The Tiny Pattern That DOS's Your Service

Security12 min read

Regex Catastrophic Backtracking: The Tiny Pattern That DOS's Your Service

An innocent-looking regex like `^(a+)+$` can hang your entire service when fed the right input. It's not a bug in your code -- it's the regex engine doing exponential backtracking on a pattern that looked fine in tests. Once you know the pattern, you'll find ReDoS vulnerabilities in places you didn't expect, including npm packages you depend on.

KP

Krishna Patil

February 16, 2026

Share

#regex#redos#performance#security#fundamentals

SeriesPart 136 of 172

Engineering Craft

TypeScript, CI/CD, databases, observability -- the skills that make code production-ready.

Previous

Floating-Point Math: The Bugs That Don't Look Like Bugs

Next

Garbage Collection: What Every Engineer Should Actually Understand

More in Security

TOCTOU Race Conditions: When Checking Isn't the Same as Doing

12 min read

TLS Handshake Explained: What Every Engineer Should Actually Know

13 min read

Threat Modeling for Engineers: STRIDE in Practice

12 min read

Study This Topic

AI & ML Fundamentals

20 cards · intermediate

AWS Cognito & Authentication

20 cards · intermediate

AWS IAM & Security

20 cards · intermediate

Older

Refactoring Legacy Code: The Patterns That Don't Make Things Worse

Newer

Reverse Proxies: nginx, HAProxy, Envoy -- What They Actually Do