So why isn't MESH part of the evaluation? And why isn't it mentioned even once in the paper?

Fil-C is specifically engineered to catch everything so it would be interesting to check it against their tests

(A sufficiently advanced programming language can avoid the entire issue by writing loops as map, fold, etc. but we're talking about C here.)

> The findings highlight significant variations in the theoretical detection capabilities of these techniques and reveal that, in practice, the implementations of most available sanitizers fall short of their conceptual potential. Furthermore, the evaluation demonstrates the complexities and diversity of memory bugs in C/C++, as well as the challenges associated with detecting them. For instance, our results show that SoftBound+CETS, a conceptually complete sanitizer, misses nearly a quarter of spatial memory bugs in its original implementation, while ASan, likely the most widely used memory sanitizer, cannot detect 50% of use-after-* bugs and any non-linear overflows and under- flows. Ultimately, our evaluation concludes that no sanitizer currently provides complete temporal or spatial memory safety

It is unmaintained:

https://github.com/Fraunhofer-AISEC/softboundcets

[1] https://fbinfer.com/

[2] https://en.wikipedia.org/wiki/Separation_logic