Echo JS 0.11.0

<~>
tracker1 787 days ago. link 2 points
Validating emails with regex should have a couple guard rails...

First, you should check for length, if it's too long, then you can get some performance issues in practice.

Second, you should actually look at what valid emails can be... you can use a quoted User portion, but that may not match what you want to allow.  The Email address spec is actually more broad than what general SMTP email allows to be delivered for internet email.  YMMV of course.

Beyond this, will generally want to add secondary checks for domain portions/lookup as well.

Disclosure, I did used to work for a company that assigned profile values based on email address as an optionally single verification param (social media association, domain popularity, registration time, etc) to flag potential scam entries for additional scrutiny etc.

Replies