I have a question about this. Why is wuffs considered to be safe? In this thread I saw a code example from cpp using wuffs, which seems to the a C library accessed from cpp in that example. Why should I trust that C library to be safe or safer than other libs?