Closed hammad93 closed 4 months ago
This project is both research focused and the ability to run it securely in operations. By switching to another language, we are prioritizing the operations of the project which may reduce or eliminate all research capacity.
This pattern goes,
Although there are safer languages than Python, is it an unsafe language? Is it worth it to rewrite the entire codebase? Also, what kinds of security guarantees do these other languages have over Python?
There are aspects like memory and thread safety that need to be addressed, but it doesn't require rewriting the codebase into another programming language.
This issue tracks whether it's still a good idea to use Python here because it's not memory safe. NIST recommends some of these here, https://www.nist.gov/itl/ssd/software-quality-group/safer-languages
Among them include Rust and stuff from Ada