profile
viewpoint
If you are wondering where the data of this site comes from, please visit https://api.github.com/users/inferno-chromium/events. GitMemory does not store any data, but only uses NGINX to cache data for a period of time. The idea behind GitMemory is simply to give users a better reading experience.
Abhishek Arya inferno-chromium @Google

google/oss-fuzz 6666

OSS-Fuzz - continuous fuzzing for open source software.

google/clusterfuzz 4569

Scalable fuzzing infrastructure.

ossf/scorecard 1969

Security Scorecards - Security health metrics for Open Source

google/fuzzing 1834

Tutorials, examples, discussions, research proposals, and other resources related to fuzzing

ossf/criticality_score 893

Gives criticality score for an open source project

google/fuzzbench 690

FuzzBench - Fuzzer benchmarking as a service.

ossf/allstar 648

GitHub App to set and enforce security policies

google/osv 403

Open source vulnerability DB and triage service.

bazelbuild/rules_fuzzing 38

Bazel Starlark extensions for defining fuzz tests in Bazel projects

ossf/package-analysis 12

Open Source Package Analysis

pull request commentgoogle/oss-fuzz

Coverage for rust projects with clang 13

This version mgmt is getting messy, can we spend time to make things work with clang 13

catenacyber

comment created time in 15 hours

push eventgoogle/oss-fuzz

DavidKorczynski

commit sha c44b98fea3d214bc065c99db53a6808fb14e98c4

wget: upgrade to latest base builder (#6488) * wget: upgrade build to latest base builder * dont add old script * wget: cleanup build

view details

push time in 17 hours

PullRequestReviewEvent

push eventgoogle/oss-fuzz

AdamKorcz

commit sha 2f12ebf27589b27f2475fdbf5734c248ac6edfbc

[etcd] Fix build (#6486)

view details

push time in a day

PR merged google/oss-fuzz

[etcd] Fix build
+4 -4

0 comment

3 changed files

AdamKorcz

pr closed time in a day

PullRequestReviewEvent
PullRequestReviewEvent

push eventgoogle/oss-fuzz

zoulasc

commit sha 708f78b2dce652588bf168eeb614ebc694cf0029

Update reproducing.md (#6464) Some bugs (specially ones related to integer and pointer overflows) are architecture-specific (32/64 bit builds). Add a hint about it.

view details

push time in 3 days

PR merged google/oss-fuzz

Update reproducing.md

Some bugs (specially ones related to integer and pointer overflows) are architecture-specific (32/64 bit builds). Add a hint about it.

+4 -1

0 comment

1 changed file

zoulasc

pr closed time in 3 days

PullRequestReviewEvent

push eventslsa-framework/slsa

Ilan Rabinovitch

commit sha 5c37c63dd18c5f6de5ba66f89ef0b0bb1431d896

fix caps on Datadog fix caps on Datadog

view details

Ilan Rabinovitch

commit sha 193aefdb55d7b89468775dd81ae3cb3d5f2c216e

fix caps on datadog fix caps on datadog

view details

Abhishek Arya

commit sha cac4021a965649ab860384dcfa20cac9e97b930f

Update README.md Co-authored-by: Trishank Karthik Kuppusamy <trishank.kuppusamy@datadoghq.com>

view details

Abhishek Arya

commit sha 6494a3ba9f150a92c29f6aafcf3e4e3517be86ab

Update getinvolved.md

view details

Abhishek Arya

commit sha 226e4e120d9b0217d885ca35d58996515e9fac5c

Merge pull request #165 from irabinovitch/patch-1 fix caps on Datadog

view details

push time in 3 days

PR merged slsa-framework/slsa

fix caps on Datadog

fix caps on Datadog

+2 -2

1 comment

2 changed files

irabinovitch

pr closed time in 3 days

PullRequestReviewEvent

push eventirabinovitch/slsa

Abhishek Arya

commit sha 6494a3ba9f150a92c29f6aafcf3e4e3517be86ab

Update getinvolved.md

view details

push time in 3 days

push eventirabinovitch/slsa

Abhishek Arya

commit sha cac4021a965649ab860384dcfa20cac9e97b930f

Update README.md Co-authored-by: Trishank Karthik Kuppusamy <trishank.kuppusamy@datadoghq.com>

view details

push time in 3 days

PullRequestReviewEvent

push eventgoogle/oss-fuzz

Caolán McNamara

commit sha 81f08b204e96ac477383ea221de4b723c12d8128

libreoffice: update builds deps (#6461)

view details

push time in 3 days

PullRequestReviewEvent

issue closedgoogle/oss-fuzz

Can't reproduce https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=38393

There was no c code change and the bug started to appear on an unrelated python change.

closed time in 3 days

zoulasc

issue commentgoogle/oss-fuzz

Can't reproduce https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=38393

Finally found what's wrong. It was a pointer addition overflow (that gcc treats as undefined behavior and removes the wrap check). This only happens in 32 bit mode, so I could not reproduce it without -m32. Perhaps it would be useful to mention in the docs to try -m32 too... Feel free to close this.

feel free to suggest a doc addition, see docs/ dir. closing

zoulasc

comment created time in 3 days

issue closedossf/allstar

Handle BP on free-tier private repos

Branch Protection is not enabled on free-tier private repos: https://docs.github.com/en/github/administering-a-repository/defining-the-mergeability-of-pull-requests/about-protected-branches GitHub responds with: GET https://api.github.com/repos/org/repo/branches/master/protection: 403 Upgrade to GitHub Pro or make this repository public to enable this feature. [] Currently we error out of the whole installation/org.

Change to fail BP policy, notify text should include the message from GitHub "Upgrade to GitHub Pro or make this repository public to enable this feature."

closed time in 3 days

jeffmendoza

push eventossf/allstar

Jeff Mendoza

commit sha 1fa4ec113fb547106d488970aa2abfe0d67e6428

Handle branch protection on private repositories.

view details

Jeff Mendoza

commit sha 83a0b78ea0cea81d6fe172e809ecceb36e79766a

Update branch.go

view details

push time in 3 days

PR merged ossf/allstar

Handle branch protection on private repositories.

Fixes #37

+9 -0

0 comment

1 changed file

jeffmendoza

pr closed time in 3 days

PullRequestReviewEvent
PullRequestReviewEvent
PullRequestReviewEvent

Pull request review commentossf/allstar

Update GitHub client version.

 require ( 	github.com/google/go-cmp v0.5.6 // indirect 	github.com/google/go-github/v29 v29.0.3 // indirect 	github.com/google/go-github/v32 v32.1.0

i think we need to clean these older version sometime.

jeffmendoza

comment created time in 3 days

PullRequestReviewEvent