Merge pull request #50 from SimonSapin/patch-2

Clarify "unsafe pollutes the module"
7 years ago · 2f7b05fd59
parent 7dfcd07611 79d7569b69
commit 2f7b05fd59
1 changed files with 2 additions and 1 deletions
--- a/src/working-with-unsafe.md
+++ b/src/working-with-unsafe.md
@ -92,7 +92,8 @@ capacity violates the invariants of Vec (that `cap` reflects the allocated space
 in the Vec). This is not something the rest of Vec can guard against. It *has*
 to trust the capacity field because there's no way to verify it.

-`unsafe` does more than pollute a whole function: it pollutes a whole *module*.
+Because it relies on invariants of a struct field, this `unsafe` code
+does more than pollute a whole function: it pollutes a whole *module*.
 Generally, the only bullet-proof way to limit the scope of unsafe code is at the
 module boundary with privacy.