From e6b7108dd3adc7432d06761dd9eb5dfe89d235e0 Mon Sep 17 00:00:00 2001 From: Jonathan Wakely Date: Thu, 15 Aug 2019 19:04:21 +0100 Subject: [PATCH] Reword how C11 Annex K functions are described (#1496) Fixes #1491 --- CppCoreGuidelines.md | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/CppCoreGuidelines.md b/CppCoreGuidelines.md index 7c879ac..8e2edf1 100644 --- a/CppCoreGuidelines.md +++ b/CppCoreGuidelines.md @@ -19711,7 +19711,8 @@ implicit memory management, and `locale` handling. If you need I/O performance, you can almost always do better than `printf()`. `gets()`, `scanf()` using `%s`, and `printf()` using `%s` are security hazards (vulnerable to buffer overflow and generally error-prone). -In C11, they are replaced by `gets_s()`, `scanf_s()`, and `printf_s()` as safer alternatives, but they are still not type safe. +C11 defines some "optional extensions" that do extra checking of their arguments. +If present in your C library, `gets_s()`, `scanf_s()`, and `printf_s()` may be safer alternatives, but they are still not type safe. ##### Enforcement