# Regular Expression Denial of Service

- ID: go-redos
- Severity: MEDIUM
- CWE: ReDoS (CWE-1333)
- Languages: Go

## Description

Regex pattern with nested quantifiers causes catastrophic backtracking.

## Remediation

Avoid nested quantifiers like (a+)+. Use possessive quantifiers or atomic groups.

```go
// Avoid patterns like: (a+)+, (.*)*
// Use specific patterns instead
re := regexp.MustCompile(`^[a-z]+$`)
```

Learn more: https://shoulder.dev/learn/go/cwe-1333/regex-dos

## Related Rules

- **Regular Expression Denial of Service (ReDoS)** [HIGH]: 
- **Regular Expression Denial of Service (ReDoS)** [MEDIUM]: