Cargo Fuzz
Skill Aktivcargo-fuzz is the de facto fuzzing tool for Rust projects using Cargo. Use for fuzzing Rust code with libFuzzer backend.
To enable developers to efficiently fuzz Rust codebases using Cargo, identify bugs and security vulnerabilities, and improve code robustness.
Funktionen
- Setup and installation of cargo-fuzz
- Writing fuzzing harnesses
- Running fuzzing campaigns
- Integrating with sanitizers (ASan)
- Coverage analysis
Anwendungsfälle
- When developing new Rust projects and wanting to ensure code quality and security from the start.
- When identifying bugs or security vulnerabilities in existing Rust code.
- When needing to fuzz complex Rust libraries or applications that use Cargo.
Nicht-Ziele
- Fuzzing non-Rust projects or projects not using Cargo.
- Providing a backend other than libFuzzer.
- Replacing dedicated fuzzing platforms for extremely large-scale or complex distributed fuzzing campaigns (though it can be run in parallel).
Trust
- warning:Issues Attention13 issues opened and 4 closed in the last 90 days indicates a closure rate below 50% and a significant number of open issues.
Documentation
- info:READMEA README file exists and provides installation instructions and an overview of available plugins, but does not specifically detail the cargo-fuzz skill's functionality.
Installation
Zuerst Marketplace hinzufügen
/plugin marketplace add trailofbits/skills/plugin install testing-handbook-skills@trailofbitsQualitätspunktzahl
Vertrauenssignale
Ähnliche Erweiterungen
Senior Backend Engineer
100Designs and implements backend systems including REST APIs, microservices, database architectures, authentication flows, and security hardening. Use when the user asks to "design REST APIs", "optimize database queries", "implement authentication", "build microservices", "review backend code", "set up GraphQL", "handle database migrations", or "load test APIs". Covers Node.js/Express/Fastify development, PostgreSQL optimization, API security, and backend architecture patterns.
Lean Ctx
100Context Runtime für KI-Agenten — 59 MCP-Tools, 10 Lesemodi, über 95 Shell-Muster, Tree-sitter AST für 18 Sprachen. Komprimiert LLM-Kontext um bis zu 99%. Verwenden Sie es beim Lesen von Dateien, Ausführen von Shell-Befehlen, Suchen von Code oder Erkunden von Verzeichnissen. Automatische Installation, falls nicht vorhanden.
Cleanup Cycles
100Detect and untangle circular dependencies. Runs madge/skott (TS), pycycle (Py), or compiler-only checks (Go/Rust). Auto-fixes leaf-extractable cycles; reports core cycles for human review. Use when the user asks to find circular imports, fix dependency cycles, or untangle module graph. Example queries — "find circular imports", "fix dependency cycles", "untangle our module graph", "why is madge complaining".
Running Tend
100Worktrunk-spezifische Anleitung für tend CI-Workflows. Ergänzt generische tend-\* Skills um Codecov-Polling, Rust-Testbefehle, Labels und Review-Kriterien. Verwendung bei der Ausführung in CI.
Secrets Management
100Implement secure secrets management for CI/CD pipelines using Vault, AWS Secrets Manager, or native platform solutions. Use when handling sensitive credentials, rotating secrets, or securing CI/CD environments.
Semgrep Rule Creator
100Creates custom Semgrep rules for detecting security vulnerabilities, bug patterns, and code patterns. Use when writing Semgrep rules or building custom static analysis detections.