OSS-Fuzz - continuous fuzzing for open source software. - google/oss-fuzz

Documentation for OSS-FuzzBug fixing guidance This page provides brief guidance on how to prioritise and fix bugs reported by OSS-Fuzz. Threat modelling Bug prioritisation Security issues Functional …

Use search box to find issues. Click to see all open issues

Google’s OSS-Fuzz-Gen Project Sees Active Development Amidst Integration Challenges In the past month, the oss-fuzz-gen project has experienced significant activity with multiple pull requests and …

Dec 22, 2025 · New issue New issue Open Open issue 457634826 closed but still replicates #14632

METHOD: We analyzed 44,102 reported issues made public by OSS-Fuzz prior to March 12, 2022. We traced the Git commit ranges reported by repeated fuzz testing to the source code repositories to …

Reproducing OSS-Fuzz issues You’ve been CCed on an OSS-Fuzz issue (examples). Now what? Before attempting to fix the bug, you should be able to reliably reproduce it. Fuzz target bugs …

OSS-Fuzz # OSS-Fuzz is an open-source project developed by Google that aims to improve the security and stability of open-source software by providing free distributed infrastructure for continuous fuzz …

In cooperation with the Core Infrastructure Initiative and the OpenSSF, OSS-Fuzz aims to make common open source software more secure and stable by combining modern fuzzing techniques …

Google created OSS-Fuzz to fill this gap: it’s a free service that runs fuzzers for open source projects and privately alerts developers to the bugs detected. Since its launch, OSS-Fuzz has become a …