From 9131b0004e7c640cc028179e1d049a4c62210d94 Mon Sep 17 00:00:00 2001
From: James O'Doherty <james@theodohertyfamily.com>
Date: Fri, 22 May 2026 10:46:02 -0400
Subject: Security hardening: prevent shell injection and null-byte crashes,
 implement 8-bit clean argument fuzzing and portable E2E binary discovery

---
 Makefile | 10 +++++++++-
 1 file changed, 9 insertions(+), 1 deletion(-)

(limited to 'Makefile')

diff --git a/Makefile b/Makefile
index 0ef54dd..1982545 100644
--- a/Makefile
+++ b/Makefile
@@ -9,7 +9,11 @@ LAUNCHER_SRC = internal/namespace/launcher_src/launcher.c
 LAUNCHER_BIN = internal/namespace/launcher.bin
 BINARY = wg-wrap
 
-.PHONY: all clean test
+# Fuzzing settings
+FUZZ_PARALLEL ?= 2
+FUZZ_TIME ?= 30s
+
+.PHONY: all clean test fuzz
 
 # Default target: build the final binary
 all: $(BINARY)
@@ -30,3 +34,7 @@ test: all
 clean:
 	rm -f $(BINARY) $(LAUNCHER_BIN)
 	find . -name "*.test" -delete
+
+# Run fuzzing tests
+fuzz: all
+	go test -v -fuzz=FuzzArgumentIntegrity -parallel $(FUZZ_PARALLEL) -fuzztime=$(FUZZ_TIME) ./tests/e2e/fuzz_args_test.go
-- 
cgit v1.2.3