Would you mind elaborating — do you see specific risks with certain approaches? E.g. are you concerned about certain additions to the language allowing the rest of the language to be degraded, so that things do not really mean what you’d expect them to mean etc, even when interpreted by an uncompromised compiler? Or do you have something else in mind?

Dave

>
> Content-Type: text/plain; charset="us-ascii"
>
> https://www.cs.cmu.edu/~rdriley/487/papers/Thompson_1984_ReflectionsonTrustingTrust.pdf
>
> As we we think about extensible compilers and JITs, this is a classic paper worth remembering about supply chain issues with just ordinary closed compilers.
>
> Herb