Hi Casbin maintainers,
I am working on integrating Casbin into Google's OSS-Fuzz to provide continuous fuzzing for the policy enforcement engine and model parsing. The initial PR is here: https://github.com/google/oss-fuzz/pull/15187
The OSS-Fuzz maintainers requested confirmation on a few points:
-
Are you okay with integrating Casbin into OSS-Fuzz?
-
Is [email protected] the correct email to receive private vulnerability reports, or do you have a specific security contact?
-
Would you be open to a Pull Request adding these fuzzer targets (FuzzEnforce and FuzzModel) directly to this repository (upstream integration), potentially using ClusterFuzzLite as well?
Thank you for your time and this excellent library!
Hi Casbin maintainers,
I am working on integrating Casbin into Google's OSS-Fuzz to provide continuous fuzzing for the policy enforcement engine and model parsing. The initial PR is here: https://github.com/google/oss-fuzz/pull/15187
The OSS-Fuzz maintainers requested confirmation on a few points:
Are you okay with integrating Casbin into OSS-Fuzz?
Is [email protected] the correct email to receive private vulnerability reports, or do you have a specific security contact?
Would you be open to a Pull Request adding these fuzzer targets (FuzzEnforce and FuzzModel) directly to this repository (upstream integration), potentially using ClusterFuzzLite as well?
Thank you for your time and this excellent library!