🌱 enable fuzzing check in cron. (ossf#2780)

Signed-off-by: Spencer Schrock <sschrock@google.com> Signed-off-by: Avishay <avishay.balter@gmail.com>
balteravishay · Apr 13, 2023 · ae8706d · ae8706d
1 parent 2cda251
commit ae8706d
Show file tree

Hide file tree

Showing 2 changed files with 4 additions and 4 deletions.
diff --git a/cron/config/config.yaml b/cron/config/config.yaml
@@ -43,9 +43,9 @@ additional-params:
     api-results-bucket-url: gs://ossf-scorecard-cron-results
     # TODO: Temporarily remove SAST and CI-Tests which require lot of GitHub API tokens.
     # TODO(#859): Re-add Contributors after fixing inconsistencies.
-    # TODO: Dependency-Update-Tool, Fuzzing, and SAST are search heavy
-    # TODO: Vulnerabilities is resource intensive, wait until the next osv-scanner release after v1.2.0
-    blacklisted-checks: CI-Tests,Contributors,Dependency-Update-Tool,Fuzzing,SAST,Vulnerabilities
+    # TODO: Dependency-Update-Tool and SAST are search heavy
+    # TODO: Vulnerabilities is slow on repos with lots of dependencies
+    blacklisted-checks: CI-Tests,Contributors,Dependency-Update-Tool,SAST,Vulnerabilities
     cii-data-bucket-url: gs://ossf-scorecard-cii-data
     # Raw results.
     raw-bigquery-table: scorecard-rawdata

diff --git a/cron/config/config_test.go b/cron/config/config_test.go
@@ -34,7 +34,7 @@ const (
 	prodCompletionThreshold            = 0.99
 	prodWebhookURL                     = ""
 	prodCIIDataBucket                  = "gs://ossf-scorecard-cii-data"
-	prodBlacklistedChecks              = "CI-Tests,Contributors,Dependency-Update-Tool,Fuzzing,SAST,Vulnerabilities"
+	prodBlacklistedChecks              = "CI-Tests,Contributors,Dependency-Update-Tool,SAST,Vulnerabilities"
 	prodShardSize               int    = 10
 	prodMetricExporter          string = "stackdriver"
 	prodMetricStackdriverPrefix string = "scorecard-cron"