diff options
author | Nikita Popov <nikita.ppv@gmail.com> | 2021-11-02 18:08:48 +0100 |
---|---|---|
committer | GitHub <noreply@github.com> | 2021-11-02 13:08:48 -0400 |
commit | 3b501d3ac3fc1bf5d5ca120d475bfe7f5f20881e (patch) | |
tree | 25173d19d0ee11e1ba0235380ba4051044267620 | |
parent | b81ef0bd750b7c639b41b55ef367558922266b8c (diff) |
[php] Make reports public (#6741)
We have some fuzzers that are security-critical (json, exif), but
these haven't found anything genuinely new in a long time. It seems
unlikely that they will find something that is not a regression in
a pre-release version (and as such okay to be public).
The other fuzzers are not classified as security-critical by the
the PHP project (unserialize, unserializehash, parser, execute,
function-jit, tracing-jit). The latter three produce the vast
majority of new reports.
I think it would be more valuable to make fuzzing reports public
and have a larger set of people who can work on them.
-rw-r--r-- | projects/php/project.yaml | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/projects/php/project.yaml b/projects/php/project.yaml index abd09064..40f5d5f1 100644 --- a/projects/php/project.yaml +++ b/projects/php/project.yaml @@ -11,4 +11,5 @@ sanitizers: architectures: - x86_64 - i386 +view_restrictions: none main_repo: 'https://github.com/php/php-src.git' |