CloudDevelopersNewsSecurity

Google Launches ClusterFuzzLite For CI/CD Workflows

0

Google has launched ClusterFuzzLite, a continuous fuzzing solution that runs as part of CI/CD workflows to find vulnerabilities faster than ever before. With just a few lines of code, GitHub users can integrate ClusterFuzzLite into their workflow and fuzz pull requests to catch bugs before they are committed, enhancing the overall security of the software supply chain.

With the release of ClusterFuzzLite, any project can integrate this essential testing standard and benefit from fuzzing. ClusterFuzzLite offers many of the same features as ClusterFuzz, such as continuous fuzzing, sanitizer support, corpus management, and coverage report generation, Google software engineer Jonathan Metzman said in a blog post.

It’s easy to set up and works with closed source projects, making ClusterFuzzLite a convenient option for any developer who wants to fuzz their software.

Large projects including systemd and curl are already using ClusterFuzzLite during code review, with positive results.

Don't miss out great stories, subscribe to our newsletter.

Login/Sign up