Falco

Repositories in the Falco organization have each their own tests that are executed at every pull request (before and after merging to the main branch) and/or every release and/or nightly.

Most of the testing pipelines are implemented with GitHub Actions. All the tests are connected with GitHub status checks to effectively show the results to every contributor that integrates new code.

// X-Content-Type-Options was not set to "nosniff".

Integrating automated fuzzing support for Falco has been proposed by maintainers, and specific case studies have been conducted by a specialized security firm during the 2023 security audit. The analysis and results can be found in the report: https://github.com/falcosecurity/falco/blob/master/audits/SECURITY_AUDIT_2023_01_23-01-1097-LIV.pdf . The Falco maintainers and community are interested in pursuing efforts to overcome the limitations discovered in the analysis and set up effective fuzzing for the project.