C alternatives

C's unsafety is a common concern, and a common reason to look for alternatives. The subject is debatable, as language comparisons tend to be in general, but here I document my perspective and observations.

Requirements

The features of C I look for in alternatives:

No garbage collection: straightforward and performant compiled code, preferably simple compilation. Portability as an implication.
POSIX-friendly, easy to use and provide C APIs.
Availability: stable and standardized language, stable libraries with a choice of those, playing nicely with existing systems and infrastructures, widely available from system repositories. Not living inside a VM, relying on curl | sh, inventing its own package management, requiring nightly builds of everything, etc.

Features that C lacks, but are desirable and compatible (to some extent) with its existing features:

Memory (and other resource) safety.
Type safety.
Maybe a simpler language.
Maybe aiming static analysis and formal verification (possibly as a part of more advanced typing and a consequence of being simpler).

Languages

C++: Does not add any of the desirable features, but adds a lot of complexity, and tends to break compatibility with C and the rest by providing OO APIs.
D: A feature-packed language, including (opt-out) OO and GC, perhaps more of an improved version of Java or C++ than of C. It also has nice documentation, and looks fairly nice overall, even if not minimalistic. But being less popular, it has fewer libraries than major languages do.
Rust: Improves both memory safety and type safety, has decent interfacing with C, but highly dependent on a non-standard setup, as of 2025: not just of packages (via cargo), but even using the compiler (via rustc) from system repositories results in failures to install most packages, since they tend to aim the latest version, and there is no dependency resolution. While the standard library is not quite sufficient even for relatively basic tasks without additional packages (e.g., there is no concurrency without multithreading, unless you use in-place FFI to access C libraries, but then the code will be more messy than usual). Idiomatic asynchronous APIs aim Rust-only sources, not to be called via C FFI. This breaks the "POSIX-friendly" and "availability" features present in C, though they could have been preserved, and it has more to do with the infrastructure than the core language. Related: Rust without crates.io. Though some libraries (crates) are rather lightweight, the difference in the numbers of dependencies of similar ones can be two orders of magnitude (e.g., argparse has no dependencies, while the more popular clap pulls 156 additional packages). Or one can add dependencies using the --precise option, first finding a version compatible with an older rustc version on crates.io, and manually resolve all the dependency versions so that they work together, doing the package manager's job. The package index updates are very slow, usually taking about 10 minutes here (though maybe less if used often).
Forth: Generally easy to interface with C code, though perhaps not to provide a C API, and it is not safer.
Zig: Not in Debian repositories, and not sure how much safer it is than C with a little static analysis. Apparently no advanced typing, but at least it supports generics, and sum types via compiler-checked tagged unions (though no "extern C" for tagged unions yet). And it aims interfacing with C. I should look more into it later.
Assembly: Sometimes C is called a "portable assembly", but it may be practical to compile actual assembly languages for simpler architectures, such as RISC-V, into others as well. Probably higher-level languages, including C, are still more practical than the nicer ones among assembly languages for simpler architectures, but possibly the latter may compete.