fix: update CI workflow and docs for current tool capabilities

RTOSploit · RTOSploit · commit 04ea7c1a711f · 2026-03-26T05:06:28.000+05:30
- ci.yaml: use ubuntu-latest, install unicorn, remove || true from tests
- ci-integration.md: replace native Rust fuzzer with Unicorn engine example
- Both reflect current dual-engine architecture (QEMU + Unicorn)
diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
@@ -9,7 +9,7 @@ on:
 jobs:
   lint-rust:
     name: Rust Lint
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-latest
     steps:
       - uses: actions/checkout@v4
       - uses: dtolnay/rust-toolchain@stable
@@ -22,7 +22,7 @@ jobs:
 
   test-rust:
     name: Rust Tests
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-latest
     steps:
       - uses: actions/checkout@v4
       - uses: dtolnay/rust-toolchain@stable
@@ -33,28 +33,28 @@ jobs:
 
   lint-python:
     name: Python Lint
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-latest
     steps:
       - uses: actions/checkout@v4
       - uses: actions/setup-python@v5
         with:
           python-version: "3.12"
       - name: Install ruff
-        run: pip install ruff mypy
+        run: pip install ruff
       - name: Ruff check
-        run: ruff check rtosploit/
-      - name: Type check
-        run: mypy rtosploit/ --ignore-missing-imports || true
+        run: ruff check .
 
   test-python:
     name: Python Tests
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-latest
     steps:
       - uses: actions/checkout@v4
       - uses: actions/setup-python@v5
         with:
           python-version: "3.12"
-      - name: Install package
-        run: pip install -e ".[dev]"
-      - name: Run tests
-        run: pytest tests/ -v --tb=short || true
+      - name: Install QEMU
+        run: sudo apt-get install -y qemu-system-arm qemu-system-misc
+      - name: Install package with dev dependencies
+        run: pip install -e ".[dev]" unicorn
+      - name: Run unit tests
+        run: pytest tests/unit/ -v --tb=short --timeout=60
diff --git a/docs/ci-integration.md b/docs/ci-integration.md
@@ -80,24 +80,26 @@ jobs:
         if: always()
 ```
 
-### Scan with Native Fuzzer
+### Scan with Unicorn Fuzzing (No QEMU Required)
 
-```yaml
-      - name: Install Rust
-        uses: dtolnay/rust-toolchain@stable
+For real hardware firmware where QEMU machine matching is not available, use the Unicorn engine with PIP:
 
-      - name: Build native fuzzer
-        run: cargo build --release -p rtosploit-fuzzer
+```yaml
+      - name: Install RTOSploit with Unicorn
+        run: pip install -e . unicorn
 
-      - name: Run scan with real fuzzing
+      - name: Run Unicorn-based fuzz scan
         run: |
-          rtosploit scan \
-            --firmware firmware.bin \
-            --machine mps2-an385 \
-            --fuzz-timeout 300 \
-            --output scan-output
+          rtosploit fuzz \
+            --firmware firmware.elf \
+            --engine unicorn \
+            --auto \
+            --timeout 300 \
+            --output fuzz-output
 ```
 
+This runs at ~700 exec/sec without QEMU, using Peripheral Input Playback for model-free MMIO handling.
+
 ### Analysis-Only (No Fuzzing)
 
 For fast feedback on every commit — static analysis and CVE check only:
