feat(scripts): generic oss-fuzz task script + run-oss-fuzz-task skill#558
Draft
ret2libc wants to merge 1 commit into
Draft
feat(scripts): generic oss-fuzz task script + run-oss-fuzz-task skill#558ret2libc wants to merge 1 commit into
ret2libc wants to merge 1 commit into
Conversation
ret2libc
force-pushed
the
worktree-generic-oss-fuzz-task-script
branch
2 times, most recently
from
4aee3a0 to
1ee7694
Compare
Add scripts/task_oss_fuzz.sh, a flag-driven helper that submits a task to the CRS webhook (/webhook/trigger_task) for any OSS-Fuzz project. Defaults the fuzzing tooling to upstream google/oss-fuzz @ master, so only --project is required; supports full and delta modes, --dry-run, and a jq-less fallback. Payload matches the server's Challenge model (drops the ignored harnesses_included field). Add two Claude Code skills: - .claude/skills/start-buttercup-compose: bring the system up with docker compose (prebuilt GHCR images by default, build-local on request) and wait for the webhook on 127.0.0.1:31323. - .claude/skills/submit-oss-fuzz-task: submit a task to a running CRS via the script; checks readiness and points at the start skill if it is down. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
ret2libc
force-pushed
the
worktree-generic-oss-fuzz-task-script
branch
from
1ee7694 to
9ed320b
Compare
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
What
Two additive dev-workflow helpers for spinning up Buttercup locally and testing it against an OSS-Fuzz project.
scripts/task_oss_fuzz.shA generic, flag-driven replacement for the per-project
orchestrator/scripts/task_upstream_*.shscripts. POSTs to the CRS webhook (/webhook/trigger_task) for any OSS-Fuzz project.google/oss-fuzz @ master— only--projectis required.--base-ref⇒ requires--repo-url+--head-ref), custom--duration, custom oss-fuzz fork/ref, and--api-url/BUTTERCUP_API_URL.--dry-runprints the JSON without submitting.jqwhen available, with a validated jq-less fallback.Challengemodel exactly; drops theharnesses_includedfield (not on the model — silently ignored by the older scripts)..claude/skills/run-oss-fuzz-task/A Claude Code skill that runs the end-to-end local smoke test:
dev/docker-compose/.envexists (from the template) and warns on placeholder LLM keys;build-localon request;buttercup-uiwebhook on127.0.0.1:31323;scripts/task_oss_fuzz.sh;Notes
kubectl port-forwardis needed for the compose flow.Testing
bash -n+--dry-runacross full / minimal / delta modes; delta-mode arg validation; jq-less fallback emits valid JSON.docker compose configvalidates from the repo root for both prebuilt-overlay and build-local invocations; prebuilt overlay publishes the UI on31323.🤖 Generated with Claude Code