Comment by Cyph0n
5 years ago
The way I look at it is that relying exclusively on manual review is at best the same as relying on both manual review and a memory safe language.
In practice, the best case and average case rarely line up.
5 years ago
The way I look at it is that relying exclusively on manual review is at best the same as relying on both manual review and a memory safe language.
In practice, the best case and average case rarely line up.
You don't have to manually review for classes of vulnerability that your programming environment forecloses on.
Good point - all the more reason to use a memory safe language!