viniul opened a new pull request #2: Commit fuzzer source code. URL: https://github.com/apache/xerces-c/pull/2 As discussed on the mailing list already, this PR adds the fuzzing harnesses written by @bshastry and me to the xerces upstream. An [initial integration into ](https://github.com/google/oss-fuzz/pull/3083) already uncovered some bugs. Integrating the fuzzing harnesses into upstream provides a cleaner way to test the xerces code. The purpose of this PR and the integration of xerces into oss-fuzz is to allow parts of xerces' code to be continuously fuzzed, which would probably result in the detection of security bugs early on in the development process. CC @bshastry
---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org With regards, Apache Git Services --------------------------------------------------------------------- To unsubscribe, e-mail: c-dev-unsubscr...@xerces.apache.org For additional commands, e-mail: c-dev-h...@xerces.apache.org