I used to think of programs as execution flowing and think about what the CPU is doing. As I moved to rust I started thinking a lot more about memory: how the data was laid out in memory, and how ownership of different parts of memory is given to [different parts of the program] at run time.
I like that one since it's in some ways a modern take on a classic:
Show me your flowcharts and conceal your tables, and I shall continue to be mystified. Show me your tables, and I won’t usually need your flowcharts; they’ll be obvious.
– Fred Brooks, The Mythical Man-Month (1975)
Thanks to the borrow checker, you can’t generally tell the difference between shallow and deep copies in rust unless the type happens to have interior mutability. This makes shallow copies the clear winner for the majority of use cases in rust, and so it’s simply not something the average rust author thinks about every day.
A team developing a key piece of security infrastructure decided to use Rust, but due to the unforgiving nature of the compiler, the team ended up relying on "unsafe" too often, and the resulting released product had more flaws than the previous release. One specific version had an uninitialized memory bug which could cause spurious apparent USB messages. A USB-connected sensor affected by the bug was being used in a defense installation, and the incorrect message triggered an ML-based pattern recognition system to infer a higher-than-tolerable probability of an imminent attack. The team at the installation determined that such an attack was going to happen too quickly to allow for the normal queries up the chain of command, and instead took it upon their own initiative to launch countermeasures. The subsequent chain of events: strikes, counterstrikes, desperate reactions, etc, led to the eradication of all mammalian life from the surface of the planet. Eons later, the follow-up reptilian intelligence never developed strong static typing, and used Reptile-Perl to write their launch control software, resulting in their rockets always exploding before making it into orbit.
Yes, of course we don't call Python an "unsafe language" - but if we don't call Python an unsafe language, it's unfair to conclude that Rust is unsafe, since Rust actually does a better (imo) job of segregating and controlling unsafety.