Release 1.6.0
This release contains two main additions: the Prototype Pollution bug detector, and handling of SIGINT/SIGSEGV signals.
Jazzer.js can now detect Prototype Pollution---a widespread vulnerability that is easy to introduce and hard to detect by manual code review.
Jazzer.js will now gracefully shut down when Ctrl+C is pressed, and will report coverage (if requested) and other information that was previously only available on crash or when the fuzzer exited by itself. In addition, Jazzer.js will now save crash files when segmentation faults occur, which allows a quick reproduction of the issue.
What's Changed
- Feature: Prototype Pollution Bug Detector by @oetr in #452
- Feature: Add SIGINT handling by @oetr in #497
- Feature: Handle segfault by @oetr in #524
- Feature: Add eslint header plugin by @bertschneider in #534
- Feature Configure eslint rules by @bertschneider in #508
- Bugfix: prevent endless loop when consuming an array of strings by @oetr in #528
- Tests: fix flaky signal handling tests by @oetr in #529