AdamKorcz
AdamKorcz
This PR reopens https://github.com/moby/buildkit/pull/1518 From that PR the following modifications have been made: 1: A docker image has been added that runs the fuzzer. To test this, do the following:...
As fuzz-introspector adds more features, managing the html from the backend becomes increasingly complex. Now in the backend we generate both the data for the html as well as the...
Adds CIFuzz to muduo's OSS-fuzz integration. In short, CIFuzz is a service offered by OSS-fuzz to run muduo's fuzzers during the CI to prevent bugs from being introduced. In this...
Dear maintainers and contributors of mpc, I have worked on the security of your project and set it up such that it can be fuzzed. As such, I thought it...
I have been working on setting up continuous fuzzing of hdf5 by way of Libfuzzer and OSS-fuzz. Fuzzing of hdf5 has been discussed here: https://github.com/HDFGroup/hdf5/pull/263#issuecomment-766171426 and here: https://github.com/HDFGroup/hdf5/issues/272. Tagging @schwehr...
`strings.Index()` returns `-1` if there is no substring in the string which will result in a slice out of range when calling `time.LoadLocation()`. Found by OSS-Fuzz: https://oss-fuzz.com/testcase-detail/5111336591032320 The indentation changes...
It looks like the Node.js fuzzers do not run. Considerations: 1. The stats page returns a 404 error: https://oss-fuzz.com/fuzzer-stats?project=nodejs&fuzzer=libFuzzer&job=libfuzzer_asan_nodejs&group_by=by-fuzzer 2. The coverage build fails because of missing corpus for some...
Adds a length check to avoid an out-of-range panic.
This adds a SLSA provenance builder for javassist. It builds the artifacts and creates the SLSA attestation for each artifact in the artifact-list. I have added the same artifact that...
The license probes could potentially be reduced from 3 to 2 as suggested in https://github.com/ossf/scorecard/pull/3465#discussion_r1361279509