> That is a very difficult assertion to validate.

Keep in mind he's limited his assertion to UX. That narrow point is almost certainly true in the case of his C codebase.

But read the rest-- he literally wrote how security researchers find memory safety errors in C codebases!

Dollars to donuts he came up with this UX-on-accident vs. security-researcher-on-purpose bug dichotomy in his head as a response to some actual CVE in his own C codebase.

In short, he's agreeing with the research that led to programming languages like Rust in the first place. And even though he's found an odd way to agree, there's no assertion to validate here (at least wrt security).

Edit: clarifications