[estebank]

> a domain where crashes aren't necessarily a problem

So an application that doesn't deal with user data? Those are rare, but do exist.

> where security isn't a top priority (non-public facing tools often fall into this category)

So nothing accessibly remotely, no connecting to a server for influencing its behavior, no auto-update, no cross-user collaboration. I sometimes hear "this doesn't need safety, it's just a multiplayer game" and don't know how to answer in a constructive way. Even an application like grep can be exploited if an (hypothetical) unmitigated coding mistake exists and it reads a specially crafted file that somehow ended innocuously on your filesystem. The threat model is much bigger than you're giving it credit.