Name: Memory Safety Patterns
Author: Wshobson
Install
Terminal · npx
$npx skills add https://github.com/wshobson/agents --skill memory-safety-patterns
Works with Paperclip
How Memory Safety Patterns fits into a Paperclip company.

Memory Safety Patterns drops into any Paperclip agent that handles this kind of work. Assign it to a specialist inside a pre-configured PaperclipOrg company and the skill becomes available on every heartbeat — no prompt engineering, no tool wiring.
SaaS FactoryPaired
Pre-configured AI company — 18 agents, 18 skills, one-time purchase.
$27$59
Explore pack
Source file
SKILL.md600 linesmarkdown
Expand
1---2name: memory-safety-patterns3description: Implement memory-safe programming with RAII, ownership, smart pointers, and resource management across Rust, C++, and C. Use when writing safe systems code, managing resources, or preventing memory bugs.4---5 6# Memory Safety Patterns7 8Cross-language patterns for memory-safe programming including RAII, ownership, smart pointers, and resource management.9 10## When to Use This Skill11 12- Writing memory-safe systems code13- Managing resources (files, sockets, memory)14- Preventing use-after-free and leaks15- Implementing RAII patterns16- Choosing between languages for safety17- Debugging memory issues18 19## Core Concepts20 21### 1. Memory Bug Categories22 23| Bug Type             | Description                      | Prevention        |24| -------------------- | -------------------------------- | ----------------- |25| **Use-after-free**   | Access freed memory              | Ownership, RAII   |26| **Double-free**      | Free same memory twice           | Smart pointers    |27| **Memory leak**      | Never free memory                | RAII, GC          |28| **Buffer overflow**  | Write past buffer end            | Bounds checking   |29| **Dangling pointer** | Pointer to freed memory          | Lifetime tracking |30| **Data race**        | Concurrent unsynchronized access | Ownership, Sync   |31 32### 2. Safety Spectrum33 34```35Manual (C) → Smart Pointers (C++) → Ownership (Rust) → GC (Go, Java)36Less safe                                              More safe37More control                                           Less control38```39 40## Patterns by Language41 42### Pattern 1: RAII in C++43 44```cpp45// RAII: Resource Acquisition Is Initialization46// Resource lifetime tied to object lifetime47 48#include <memory>49#include <fstream>50#include <mutex>51 52// File handle with RAII53class FileHandle {54public:55    explicit FileHandle(const std::string& path)56        : file_(path) {57        if (!file_.is_open()) {58            throw std::runtime_error("Failed to open file");59        }60    }61 62    // Destructor automatically closes file63    ~FileHandle() = default; // fstream closes in its destructor64 65    // Delete copy (prevent double-close)66    FileHandle(const FileHandle&) = delete;67    FileHandle& operator=(const FileHandle&) = delete;68 69    // Allow move70    FileHandle(FileHandle&&) = default;71    FileHandle& operator=(FileHandle&&) = default;72 73    void write(const std::string& data) {74        file_ << data;75    }76 77private:78    std::fstream file_;79};80 81// Lock guard (RAII for mutexes)82class Database {83public:84    void update(const std::string& key, const std::string& value) {85        std::lock_guard<std::mutex> lock(mutex_); // Released on scope exit86        data_[key] = value;87    }88 89    std::string get(const std::string& key) {90        std::shared_lock<std::shared_mutex> lock(shared_mutex_);91        return data_[key];92    }93 94private:95    std::mutex mutex_;96    std::shared_mutex shared_mutex_;97    std::map<std::string, std::string> data_;98};99 100// Transaction with rollback (RAII)101template<typename T>102class Transaction {103public:104    explicit Transaction(T& target)105        : target_(target), backup_(target), committed_(false) {}106 107    ~Transaction() {108        if (!committed_) {109            target_ = backup_; // Rollback110        }111    }112 113    void commit() { committed_ = true; }114 115    T& get() { return target_; }116 117private:118    T& target_;119    T backup_;120    bool committed_;121};122```123 124### Pattern 2: Smart Pointers in C++125 126```cpp127#include <memory>128 129// unique_ptr: Single ownership130class Engine {131public:132    void start() { /* ... */ }133};134 135class Car {136public:137    Car() : engine_(std::make_unique<Engine>()) {}138 139    void start() {140        engine_->start();141    }142 143    // Transfer ownership144    std::unique_ptr<Engine> extractEngine() {145        return std::move(engine_);146    }147 148private:149    std::unique_ptr<Engine> engine_;150};151 152// shared_ptr: Shared ownership153class Node {154public:155    std::string data;156    std::shared_ptr<Node> next;157 158    // Use weak_ptr to break cycles159    std::weak_ptr<Node> parent;160};161 162void sharedPtrExample() {163    auto node1 = std::make_shared<Node>();164    auto node2 = std::make_shared<Node>();165 166    node1->next = node2;167    node2->parent = node1; // Weak reference prevents cycle168 169    // Access weak_ptr170    if (auto parent = node2->parent.lock()) {171        // parent is valid shared_ptr172    }173}174 175// Custom deleter for resources176class Socket {177public:178    static void close(int* fd) {179        if (fd && *fd >= 0) {180            ::close(*fd);181            delete fd;182        }183    }184};185 186auto createSocket() {187    int fd = socket(AF_INET, SOCK_STREAM, 0);188    return std::unique_ptr<int, decltype(&Socket::close)>(189        new int(fd),190        &Socket::close191    );192}193 194// make_unique/make_shared best practices195void bestPractices() {196    // Good: Exception safe, single allocation197    auto ptr = std::make_shared<Widget>();198 199    // Bad: Two allocations, not exception safe200    std::shared_ptr<Widget> ptr2(new Widget());201 202    // For arrays203    auto arr = std::make_unique<int[]>(10);204}205```206 207### Pattern 3: Ownership in Rust208 209```rust210// Move semantics (default)211fn move_example() {212    let s1 = String::from("hello");213    let s2 = s1; // s1 is MOVED, no longer valid214 215    // println!("{}", s1); // Compile error!216    println!("{}", s2);217}218 219// Borrowing (references)220fn borrow_example() {221    let s = String::from("hello");222 223    // Immutable borrow (multiple allowed)224    let len = calculate_length(&s);225    println!("{} has length {}", s, len);226 227    // Mutable borrow (only one allowed)228    let mut s = String::from("hello");229    change(&mut s);230}231 232fn calculate_length(s: &String) -> usize {233    s.len()234} // s goes out of scope, but doesn't drop since borrowed235 236fn change(s: &mut String) {237    s.push_str(", world");238}239 240// Lifetimes: Compiler tracks reference validity241fn longest<'a>(x: &'a str, y: &'a str) -> &'a str {242    if x.len() > y.len() { x } else { y }243}244 245// Struct with references needs lifetime annotation246struct ImportantExcerpt<'a> {247    part: &'a str,248}249 250impl<'a> ImportantExcerpt<'a> {251    fn level(&self) -> i32 {252        3253    }254 255    // Lifetime elision: compiler infers 'a for &self256    fn announce_and_return_part(&self, announcement: &str) -> &str {257        println!("Attention: {}", announcement);258        self.part259    }260}261 262// Interior mutability263use std::cell::{Cell, RefCell};264use std::rc::Rc;265 266struct Stats {267    count: Cell<i32>,           // Copy types268    data: RefCell<Vec<String>>, // Non-Copy types269}270 271impl Stats {272    fn increment(&self) {273        self.count.set(self.count.get() + 1);274    }275 276    fn add_data(&self, item: String) {277        self.data.borrow_mut().push(item);278    }279}280 281// Rc for shared ownership (single-threaded)282fn rc_example() {283    let data = Rc::new(vec![1, 2, 3]);284    let data2 = Rc::clone(&data); // Increment reference count285 286    println!("Count: {}", Rc::strong_count(&data)); // 2287}288 289// Arc for shared ownership (thread-safe)290use std::sync::Arc;291use std::thread;292 293fn arc_example() {294    let data = Arc::new(vec![1, 2, 3]);295 296    let handles: Vec<_> = (0..3)297        .map(|_| {298            let data = Arc::clone(&data);299            thread::spawn(move || {300                println!("{:?}", data);301            })302        })303        .collect();304 305    for handle in handles {306        handle.join().unwrap();307    }308}309```310 311### Pattern 4: Safe Resource Management in C312 313```c314// C doesn't have RAII, but we can use patterns315 316#include <stdlib.h>317#include <stdio.h>318 319// Pattern: goto cleanup320int process_file(const char* path) {321    FILE* file = NULL;322    char* buffer = NULL;323    int result = -1;324 325    file = fopen(path, "r");326    if (!file) {327        goto cleanup;328    }329 330    buffer = malloc(1024);331    if (!buffer) {332        goto cleanup;333    }334 335    // Process file...336    result = 0;337 338cleanup:339    if (buffer) free(buffer);340    if (file) fclose(file);341    return result;342}343 344// Pattern: Opaque pointer with create/destroy345typedef struct Context Context;346 347Context* context_create(void);348void context_destroy(Context* ctx);349int context_process(Context* ctx, const char* data);350 351// Implementation352struct Context {353    int* data;354    size_t size;355    FILE* log;356};357 358Context* context_create(void) {359    Context* ctx = calloc(1, sizeof(Context));360    if (!ctx) return NULL;361 362    ctx->data = malloc(100 * sizeof(int));363    if (!ctx->data) {364        free(ctx);365        return NULL;366    }367 368    ctx->log = fopen("log.txt", "w");369    if (!ctx->log) {370        free(ctx->data);371        free(ctx);372        return NULL;373    }374 375    return ctx;376}377 378void context_destroy(Context* ctx) {379    if (ctx) {380        if (ctx->log) fclose(ctx->log);381        if (ctx->data) free(ctx->data);382        free(ctx);383    }384}385 386// Pattern: Cleanup attribute (GCC/Clang extension)387#define AUTO_FREE __attribute__((cleanup(auto_free_func)))388 389void auto_free_func(void** ptr) {390    free(*ptr);391}392 393void auto_free_example(void) {394    AUTO_FREE char* buffer = malloc(1024);395    // buffer automatically freed at end of scope396}397```398 399### Pattern 5: Bounds Checking400 401```cpp402// C++: Use containers instead of raw arrays403#include <vector>404#include <array>405#include <span>406 407void safe_array_access() {408    std::vector<int> vec = {1, 2, 3, 4, 5};409 410    // Safe: throws std::out_of_range411    try {412        int val = vec.at(10);413    } catch (const std::out_of_range& e) {414        // Handle error415    }416 417    // Unsafe but faster (no bounds check)418    int val = vec[2];419 420    // Modern C++20: std::span for array views421    std::span<int> view(vec);422    // Iterators are bounds-safe423    for (int& x : view) {424        x *= 2;425    }426}427 428// Fixed-size arrays429void fixed_array() {430    std::array<int, 5> arr = {1, 2, 3, 4, 5};431 432    // Compile-time size known433    static_assert(arr.size() == 5);434 435    // Safe access436    int val = arr.at(2);437}438```439 440```rust441// Rust: Bounds checking by default442 443fn rust_bounds_checking() {444    let vec = vec![1, 2, 3, 4, 5];445 446    // Runtime bounds check (panics if out of bounds)447    let val = vec[2];448 449    // Explicit option (no panic)450    match vec.get(10) {451        Some(val) => println!("Got {}", val),452        None => println!("Index out of bounds"),453    }454 455    // Iterators (no bounds checking needed)456    for val in &vec {457        println!("{}", val);458    }459 460    // Slices are bounds-checked461    let slice = &vec[1..3]; // [2, 3]462}463```464 465### Pattern 6: Preventing Data Races466 467```cpp468// C++: Thread-safe shared state469#include <mutex>470#include <shared_mutex>471#include <atomic>472 473class ThreadSafeCounter {474public:475    void increment() {476        // Atomic operations477        count_.fetch_add(1, std::memory_order_relaxed);478    }479 480    int get() const {481        return count_.load(std::memory_order_relaxed);482    }483 484private:485    std::atomic<int> count_{0};486};487 488class ThreadSafeMap {489public:490    void write(const std::string& key, int value) {491        std::unique_lock lock(mutex_);492        data_[key] = value;493    }494 495    std::optional<int> read(const std::string& key) {496        std::shared_lock lock(mutex_);497        auto it = data_.find(key);498        if (it != data_.end()) {499            return it->second;500        }501        return std::nullopt;502    }503 504private:505    mutable std::shared_mutex mutex_;506    std::map<std::string, int> data_;507};508```509 510```rust511// Rust: Data race prevention at compile time512 513use std::sync::{Arc, Mutex, RwLock};514use std::sync::atomic::{AtomicI32, Ordering};515use std::thread;516 517// Atomic for simple types518fn atomic_example() {519    let counter = Arc::new(AtomicI32::new(0));520 521    let handles: Vec<_> = (0..10)522        .map(|_| {523            let counter = Arc::clone(&counter);524            thread::spawn(move || {525                counter.fetch_add(1, Ordering::SeqCst);526            })527        })528        .collect();529 530    for handle in handles {531        handle.join().unwrap();532    }533 534    println!("Counter: {}", counter.load(Ordering::SeqCst));535}536 537// Mutex for complex types538fn mutex_example() {539    let data = Arc::new(Mutex::new(vec![]));540 541    let handles: Vec<_> = (0..10)542        .map(|i| {543            let data = Arc::clone(&data);544            thread::spawn(move || {545                let mut vec = data.lock().unwrap();546                vec.push(i);547            })548        })549        .collect();550 551    for handle in handles {552        handle.join().unwrap();553    }554}555 556// RwLock for read-heavy workloads557fn rwlock_example() {558    let data = Arc::new(RwLock::new(HashMap::new()));559 560    // Multiple readers OK561    let read_guard = data.read().unwrap();562 563    // Writer blocks readers564    let write_guard = data.write().unwrap();565}566```567 568## Best Practices569 570### Do's571 572- **Prefer RAII** - Tie resource lifetime to scope573- **Use smart pointers** - Avoid raw pointers in C++574- **Understand ownership** - Know who owns what575- **Check bounds** - Use safe access methods576- **Use tools** - AddressSanitizer, Valgrind, Miri577 578### Don'ts579 580- **Don't use raw pointers** - Unless interfacing with C581- **Don't return local references** - Dangling pointer582- **Don't ignore compiler warnings** - They catch bugs583- **Don't use `unsafe` carelessly** - In Rust, minimize it584- **Don't assume thread safety** - Be explicit585 586## Debugging Tools587 588```bash589# AddressSanitizer (Clang/GCC)590clang++ -fsanitize=address -g source.cpp591 592# Valgrind593valgrind --leak-check=full ./program594 595# Rust Miri (undefined behavior detector)596cargo +nightly miri run597 598# ThreadSanitizer599clang++ -fsanitize=thread -g source.cpp600```
Related skills
Accessibility Compliance

This walks you through implementing proper WCAG 2.2 compliance with real code patterns for screen readers, keyboard navigation, and mobile accessibility. It cov
Airflow Dag Patterns

If you're building data pipelines with Airflow, this skill gives you production-ready DAG patterns that actually work in the real world. It covers TaskFlow API
Angular Migration

Migrating from AngularJS to Angular is notoriously painful, and this skill tackles the practical stuff that makes or breaks these projects. It covers hybrid app