oss-fuzz icon indicating copy to clipboard operation
oss-fuzz copied to clipboard
verified publisher icon google

Report Fuzz Introspector findings to project contacts

Open cgzones opened this issue 1 year ago • 3 comments

The Fuzz Introspector reported (correctly) that the checkpolicy-fuzzer of the selinux project is broken. Maybe such findings can be automatically send via email to the project contacts. Also the report (and a diff to the previous one to detect stalls) can be send e.g. in a quarterly interval.

cgzones avatar Oct 18 '24 11:10 cgzones

I think it's kind of related to https://github.com/google/oss-fuzz/issues/11398.

evverx avatar Oct 18 '24 15:10 evverx

I agree, and also think this is related to https://github.com/google/oss-fuzz/issues/11398

I like the idea a lot of sending out quarterly emails with a summary of the state/progress/issues/etc.

I'll try to get the ball moving on this one.

DavidKorczynski avatar Oct 18 '24 19:10 DavidKorczynski

@DavidKorczynski is this a policy question or does this just need an implementation?

If it just requires implementation and if you can give me pointer where this would be best added I can take a look at implementing this.

phi-go avatar Feb 21 '25 08:02 phi-go