Comment by alkonaut

Even so, if the parser handles security or human safety then it shouldn't be written in C, or even using a parser generator that generates C.

Just use ML, or Rust, or bloody JavaScript for all I care. I don't care if they add a ton to response time, or add 100% perf overhead costs for running the thing.

Having an OS, ssl library, web server etc written in C is bad enough but at least that code has many eyes on it. Companies shouldnt throw their custom made tyres on top of that fire.