xref: /freebsd/crypto/krb5/.github/workflows/cifuzz.yml (revision f1c4c3daccbaf3820f0e2224de53df12fc952fcc) 
1name: CIFuzz
2
3on:
4    pull_request: {paths: [src/**, .github/workflows/cifuzz.yml]}
5
6permissions: {}
7jobs:
8    Fuzzing:
9        runs-on: ubuntu-latest
10        permissions:
11            security-events: write
12        steps:
13        - name: Build Fuzzers
14          id: build
15          uses: google/oss-fuzz/infra/cifuzz/actions/build_fuzzers@master
16          with:
17            oss-fuzz-project-name: 'krb5'
18            language: c
19        - name: Run Fuzzers
20          uses: google/oss-fuzz/infra/cifuzz/actions/run_fuzzers@master
21          with:
22            oss-fuzz-project-name: 'krb5'
23            language: c
24            fuzz-seconds: 300
25            output-sarif: true
26        - name: Upload Crash
27          uses: actions/upload-artifact@v4
28          if: failure() && steps.build.outcome == 'success'
29          with:
30            name: artifacts
31            path: ./out/artifacts
32        - name: Upload Sarif
33          if: always() && steps.build.outcome == 'success'
34          uses: github/codeql-action/upload-sarif@v3
35          with:
36            # Path to SARIF file relative to the root of the repository
37            sarif_file: cifuzz-sarif/results.sarif
38            checkout_path: cifuzz-sarif
39