GabeDottl
commented
5 years ago Native modules are ofc already a pain since we can't analyze the code (at least easily) - interesting options include introspection (ala MonkeyType and PyAnnotate) and inferring module contents through use (e.g. infer np.min returns a number by context).
Particularly, in the process of analyzing code, we need to be particularly careful about not executing unsafe instructions - this includes generally not performing any sort of I/O or allowing any native modules to run unless they're run within a sandbox (e.g. VM w/o network access).