Collect best practices for interfacing between memory safe by default and non memory safe by default languages

[nellshamrell]

[Andrew-Fryer]

I think one logical best practice is to separate all FFIs into a separate crate/module/package so that it can be audited in isolation. All the exported symbols from that crate/module/package should be memory safe.