Add proposal for out of the box fuzzing #273
Conversation
|
It seems to me that the property base tests should also be covered. FsCheck is an example of a .NET library which is a port of QuickCheck |
|
Cc @jeffhandley |
|
This sounds useful to me, but I'm not clear on why it should be part of the .Net SDK, instead of a tool that can be installed using |
Instrumenting the target and running the fuzzing usually require some overhead. |
You can bundle the external dependencies into the tool package to provide unified experience, just like you would bundle them into the SDK to provide uniform experience. It is better to start by independent package for features like this. You can react to feedback and iterate quicky, and you have a lot of freedom for making breaking changes. And then consider integrating with the SDK only once you have validated on real world use cases that the experience is right and stable. Once you integrate with SDK, the bar rises a lot: You need to worry about backward compatibility, aligning with SDK ship schedule, etc. |
|
We have had some recent prototype efforts internally in this space. We are exploring some possible paths forward while we conduct our .NET 8 planning. |
|
Took the conversation offline. Like Jeff said, we've done some internal prototyping, but nothing that's really in a position to show at the moment. I propose we close this issue since it's not immediately actionable and it's already being tracked in a separate database. |
|
Closing. See the reasons mentioned above |
Adding a proposal for including fuzz testing as part of the .NET toolchain.