There’s still more to do
The standardization committee is currently working on a proposal called safety profiles, which allows a combined approach formed of compile enhancements, static analysis, and profiler tools to eliminate most of these safety issues. It is unclear when it will be done, and I for one don’t envy their task. There are millions if not billions of lines of C++ code used today, and any proposal needs to have a minimal impact on the existing code, other than pointing out potential security issues. It must also affect performance as little as possible, given how important it is for many existing applications.
On the other hand, the urgency is clear. C++ has issues with memory safety, and it might end up on a blacklist for US government projects, and likely for other governments as well. Only time will tell when the issue is resolved and how it impacts the usage of the language.
