When creating a service policy with custom rules the console provides the invert option for the http method and the http headers but not for the http path. It would be ideal to do an invert match on the path because using negative look ahead regex match is cpu intensive and not an ideal regex to run on every request.

An example use case is I want to disable malicious user mitigation for all paths with the exception of one. To do this I would create a service policy, set the action to allow and skip MUM, then set the path to the API I want to execute MUM on and then select invert match.