On Monday, 22 October 2018 at 00:32:35 UTC, Timon Gehr wrote: > This only works if untrusted programmers (i.e. programmers who > are only allowed to write/modify @safe code) are not allowed to > change your class. I.e. it does not work. This is the basis of the current @safe/@trusted/@system model. Are you saying it is useless?