Lucas and Luna explore fuzz testing — why throwing random inputs at your code finds bugs that hand-written test cases never will. They trace the technique from its origins in the 1988 'finger' vulnerability through Google's OSS-Fuzz, which has found over 30,000 bugs in critical open-source projects. They discuss how a single fuzzing harness at Microsoft caught a decade-old bug in their Windows TCP/IP stack, and why modern CI pipelines can run fuzzers alongside unit tests without significant overhead. Luna challenges whether fuzzing is practical for early-stage startups; Lucas makes the case that even a simple 50-line fuzzer beats manual edge-case hunting. The episode closes on the question of whether fuzzing will become a regulatory requirement for safety-critical software.

#Fuzzing #FuzzTesting #SoftwareTesting #QA #Automation #EdgeCases #GoogleOSS-Fuzz #Microsoft #SecurityTesting #CI #DevOps #OpenSource #BugDetection #Tech #Technology #FexingoBusiness #BusinessPodcast #TestingPodcast

Keep every episode free: buymeacoffee.com/fexingo