[Date Prev][Date Next][Thread Prev][Thread Next]
- Subject: Re: Integrating fuzzing by way of OSS-Fuzz
- From: Roberto Ierusalimschy <roberto@...>
- Date: Thu, 19 Nov 2020 10:45:05 -0300
> I have worked on Lua security recently with the intentions of setting up
> continuous fuzzing of Lua by way of OSS-Fuzz. The goal is to use
> automated test-case generation by way of fuzzing to catch any
> undesirable bugs in Lua.
> Would you be happy to integrate Lua into this project? If so, the only
> thing I would need is an email(s) that will receive the bug-reports, or,
> alternatively a "go" from the maintainers that bugs should be made
> visible to the public when found. I am happy to maintain the fuzzer and
> infrastructure from the OSS-Fuzz side of things.
Sounds interesting, bug how bugs are defined, or who decides that some
specific behavior is a bug?