mowies
commented
1 month ago This would probably be a bigger thing. We do have sort-of black box tests already with our e2e tests, but more tests are always better :) We are looking for help on this one.
Open harshitasao opened 2 months ago
mowies
commented
1 month ago This would probably be a bigger thing. We do have sort-of black box tests already with our e2e tests, but more tests are always better :) We are looking for help on this one.
Garvit-77
commented
2 weeks ago hey @mowies I would like to work on it
mowies
commented
2 weeks ago sure @Garvit-77 !
Garvit-77
commented
2 weeks ago @mowies, could you let me know the components for the implementation of the fuzz testor for which fuzzers need to be written
mowies
commented
2 weeks ago We don't really have any experience with fuzz testing so you would need to come up with your own strategy here for what makes the most sense. That's why we put the help-wanted label on here :)
Garvit-77
commented
2 weeks ago Okay! I would have a study by myself and let you know .
What would you like to be added: Fuzz testing or Fuzzing is a Black Box software testing technique, which basically consists in finding implementation bugs using malformed/semi-malformed data injection in an automated fashion.
Integrate the project with OSS-Fuzz by following the instructions here.
Why is this needed: To increase the security posture of the project.
Part of #3681
Maintainers help is highly appreciated. For example, helping in identifying the components where fuzz testing will be added.