We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Describe the bug If a repo's project.yaml file on the OSS-Fuzz repo points to a sub-folder, Scorecard's Fuzzing detection fails.
project.yaml
Reproduction steps Steps to reproduce the behavior:
cmp
main_repo: "https://github.com/google/go-cmp/cmp"
Expected behavior Scorecard should parse the project.yaml's URL more cautiously, to ensure it always gets the correct username and repo.
Additional context After a brief conversation with @spencerschrock, the issue seems to be here:
scorecard/clients/ossfuzz/client.go
Lines 142 to 146 in 271f0f2
The text was updated successfully, but these errors were encountered:
Successfully merging a pull request may close this issue.
Describe the bug
If a repo's
project.yaml
file on the OSS-Fuzz repo points to a sub-folder, Scorecard's Fuzzing detection fails.Reproduction steps
Steps to reproduce the behavior:
project.yaml
points to the repo'scmp
folder:main_repo: "https://github.com/google/go-cmp/cmp"
.Expected behavior
Scorecard should parse the
project.yaml
's URL more cautiously, to ensure it always gets the correct username and repo.Additional context
After a brief conversation with @spencerschrock, the issue seems to be here:
scorecard/clients/ossfuzz/client.go
Lines 142 to 146 in 271f0f2
The text was updated successfully, but these errors were encountered: