diff options
| author | Max Moroz <mmoroz@chromium.org> | 2019-06-06 09:49:21 -0700 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2019-06-06 09:49:21 -0700 |
| commit | 43093dcf21a9153b22ee1ec45c8e40dd5ab2c655 (patch) | |
| tree | da6611dc0790029590cba8099596e99d9f2947ac /docs | |
| parent | 755518f8020c0dd0047f24f80fd8a5c08a841d56 (diff) | |
| download | oss-fuzz-43093dcf21a9153b22ee1ec45c8e40dd5ab2c655.tar.gz | |
[docs] Add FAQ for non open source projects, mention ClusterFuzz. (#2489)
* [docs] Add FAQ for non open source projects, mention ClusterFuzz.
* Remove TOC as GitHub does not support it.
* Address review feedback.
Diffstat (limited to 'docs')
| -rw-r--r-- | docs/faq.md | 12 |
1 files changed, 12 insertions, 0 deletions
diff --git a/docs/faq.md b/docs/faq.md index 2f31b6f8e..92acfb80b 100644 --- a/docs/faq.md +++ b/docs/faq.md @@ -20,6 +20,18 @@ You should look for places in your code that: - use an algorithm that has two or more implementations (to verify their equivalence). - look for existing fuzz target [examples](https://github.com/google/oss-fuzz/tree/master/projects) and find similarities. +## My project is not open source. Can I use OSS-Fuzz? + +You cannot use OSS-Fuzz, but you can use [ClusterFuzz] which OSS-Fuzz is based +on. ClusterFuzz is an open-source fuzzing infrastructure that you can deploy in +your own environment and run continuously at scale. + +OSS-Fuzz is a production instance of ClusterFuzz, plus the code living in +[OSS-Fuzz repository]: build scripts, `project.yaml` files with contacts, etc. + +[ClusterFuzz]: https://github.com/google/clusterfuzz +[OSS-Fuzz repository]: https://github.com/google/oss-fuzz + ## Why do you use a [different issue tracker](https://bugs.chromium.org/p/oss-fuzz/issues/list) for reporting bugs in OSS projects? Security access control is important for the kind of issues that OSS-Fuzz detects. |