Skip to content

Release 1.6.0

Compare
Choose a tag to compare
@oetr oetr released this 04 Aug 09:24

This release contains two main additions: the Prototype Pollution bug detector, and handling of SIGINT/SIGSEGV signals.

Jazzer.js can now detect Prototype Pollution---a widespread vulnerability that is easy to introduce and hard to detect by manual code review.

Jazzer.js will now gracefully shut down when Ctrl+C is pressed, and will report coverage (if requested) and other information that was previously only available on crash or when the fuzzer exited by itself. In addition, Jazzer.js will now save crash files when segmentation faults occur, which allows a quick reproduction of the issue.

What's Changed