FYI: Fuzzing for CNCF Projects

Home Messages Hashtags Subgroups

Chris Aniszczyk #5570 Hey TOC and the wider community, some of our projects have taken advantage of fuzzing (through oss-fuzz and other tools), also we recently funded some fuzzing/audit work for fluentbit to see the impact and usefulness: https://github.com/fluent/fluent-bit/pull/2853 I've attached a report as an output which contains all the issues found/resolved. If your project is interested in this type of work, let us know via a servicedesk request (https://github.com/cncf/servicedesk), we found it fairly useful on top of normal security audits. -- Chris Aniszczyk (@cra) PDF cncf-fuzzing-audit.pdf
More All Messages By This Member

Join {cncf-toc@lists.cncf.io to automatically receive all group messages.