chore: Sync with rhiza #228
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # This file is part of the jebel-quant/rhiza repository | |
| # (https://github.com/jebel-quant/rhiza). | |
| # | |
| # Workflow: ClusterFuzzLite fuzzing | |
| # | |
| # Purpose: Run coverage-guided fuzzing for the repository's Python security | |
| # parsing utilities. Pull requests run short code-change fuzzing, | |
| # while main-branch pushes and the weekly schedule run batch fuzzing. | |
| # | |
| # Opt-in: fuzzing is OFF by default and very optional. Set the | |
| # repository variable `FUZZING_ENABLED` to 'true' to run it (a | |
| # .clusterfuzzlite/ config must also be present); otherwise the | |
| # reusable workflow skips fuzzing (the run stays green). | |
| # | |
| # Thin stub: the fuzzing logic lives in the reusable workflow in | |
| # jebel-quant/rhiza; this file only wires up the triggers. | |
| # | |
| # Trigger: Pull requests, pushes to main/master, weekly schedule, and manual | |
| # dispatch. | |
| name: "(RHIZA) FUZZING" | |
| on: | |
| pull_request: | |
| branches: [ "main", "master" ] | |
| push: | |
| branches: [ "main", "master" ] | |
| schedule: | |
| - cron: '17 3 * * 6' | |
| workflow_dispatch: | |
| permissions: | |
| contents: read | |
| jobs: | |
| fuzzing: | |
| uses: jebel-quant/rhiza/.github/workflows/rhiza_fuzzing.yml@v0.19.4 | |
| secrets: inherit | |
| permissions: | |
| contents: read | |
| security-events: write # Upload fuzzing SARIF to code scanning |