omamori 0.9.0

AI Agent's Omamori — protect your system from dangerous commands executed via AI CLI tools
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53

name: Fuzz

on:
  # Nightly schedule: longer fuzz runs
  schedule:
    - cron: '0 3 * * *'
  # PR: short fuzz to catch regressions
  pull_request:
    branches: [main]
    paths:
      - 'src/**'
      - 'fuzz/**'
  # Manual trigger
  workflow_dispatch:

env:
  CARGO_TERM_COLOR: always

jobs:
  fuzz:
    name: Fuzz (${{ matrix.target }})
    runs-on: ubuntu-latest
    strategy:
      fail-fast: false
      matrix:
        target: [fuzz_unwrap, fuzz_hook_input, fuzz_check_command]
    steps:
      - uses: actions/checkout@v4

      - uses: actions-rust-lang/setup-rust-toolchain@v1
        with:
          toolchain: nightly

      - name: Install cargo-fuzz
        run: cargo install cargo-fuzz

      - name: Run fuzz target (${{ matrix.target }})
        run: |
          cd fuzz
          # PR: 30 seconds per target. Nightly: 5 minutes.
          if [ "${{ github.event_name }}" = "schedule" ]; then
            DURATION=300
          else
            DURATION=30
          fi
          cargo +nightly fuzz run ${{ matrix.target }} -- -max_total_time=$DURATION

      - name: Upload crash artifacts
        if: failure()
        uses: actions/upload-artifact@v4
        with:
          name: fuzz-crash-${{ matrix.target }}
          path: fuzz/artifacts/${{ matrix.target }}/