By the way, I have a conceptual picture in mind for handling unsafe code.
- This standard is a concrete first step that we believe the community can realistically take.
- The second step, in our view, is to introduce keyword-based safety properties, as suggested by Predrag here.
- The third step is to adopt attribute-based safety keywords (safety-tags), as proposed in RFC 3842. We proposed RFC 3842 half a year ago, but we found that it would be difficult to adopt in a real-world project unless the first two steps are implemented.
- The final step is to support parameters in safety tags, making them more expressive and enabling their conversion into contracts suitable for verification purposes. This is the goal of our safety-tag project.