I think the security list is a good choice.
Lee
On 3 8 2021, at 2:55, Stefan Bodewig wrote:
> On 2021-03-07, Gary Gregory wrote:
>
> > This issue has popped as well WRT GitHub emails from Dependabot.
> I don't think this is comparable.
> The fuzzer may find issues that can be exploited as DoS
On 2021-03-07, Gary Gregory wrote:
> This issue has popped as well WRT GitHub emails from Dependabot.
I don't think this is comparable.
The fuzzer may find issues that can be exploited as DoS attacks, so the
results probably should go to a subscription-moderated list IMHO.
Stefan
> Gary
> On
This issue has popped as well WRT GitHub emails from Dependabot.
Gary
On Sun, Mar 7, 2021, 12:45 Matt Sicker wrote:
> We could create another private list for static analysis alerts perhaps?
>
> On Sun, 7 Mar 2021 at 03:51, Stefan Bodewig wrote:
> >
> > On 2021-03-07, Fabian Meumertzheim
We could create another private list for static analysis alerts perhaps?
On Sun, 7 Mar 2021 at 03:51, Stefan Bodewig wrote:
>
> On 2021-03-07, Fabian Meumertzheim wrote:
>
> > On Sat, Mar 6, 2021 at 10:08 PM Stefan Bodewig wrote:
>
> >> OTOH I'm not sure I understand the requirements of
+1
Signatures good, tested on macOS with Java 1.8, 11, and 15.
On Sun, 7 Mar 2021 at 09:30, Arturo Bernal
wrote:
>
> Hi All,
>
> Build OK from the tag '4fbaade0’ with ‘mvn test’
>
>
>
> Maven home: /opt/apache-maven-3.6.3
> Java version: 1.8.0_275, vendor: AdoptOpenJDK, runtime:
>
Hi All,
Build OK from the tag '4fbaade0’ with ‘mvn test’
Maven home: /opt/apache-maven-3.6.3
Java version: 1.8.0_275, vendor: AdoptOpenJDK, runtime:
/Library/Java/JavaVirtualMachines/adoptopenjdk-8.jdk/Contents/Home/jre
Default locale: en_US, platform encoding: UTF-8
OS name: "mac os x",
On 2021-03-07, Fabian Meumertzheim wrote:
> On Sat, Mar 6, 2021 at 10:08 PM Stefan Bodewig wrote:
>> OTOH I'm not sure I understand the requirements of OSS-Fuzz. I haven't
>> read the docs only looked at the image of the process. Seeing a
>> Sheriffbot tracking deadlines makes the me very
