Google’s OSS-Fuzz Tool Helps Secure Open Source Projects (

Post Syndicated from ris original takes
a look
at Google’s OSS-Fuzz threat detection tool. “Google also
announced that it is expanding its existing Patch
program to include rewards for the integration of fuzz
into OSS-Fuzz. To qualify for these rewards, a project needs to
have a large user base and/or be critical to global IT
infrastructure. Eligible projects will receive $1,000 for initial
integration, and up to $20,000 for ideal integration (the final amount is
at Google’s discretion). Project leaders have the option of donating these
rewards to charity instead, and Google will double the amount.

LWN covered OSS-Fuzz last January.