Telemetry in CI Fuzz
CI Fuzz collects anonymous data to help us understand how our customers use the product. We use this data to improve the product and to make decisions about future features and improvements.
What Data is Collected?
The following data is collected:
- CI Fuzz version: The version of CI Fuzz you are using. For example:
1.2.3. - CI Fuzz command: The command you ran in CI Fuzz. For example:
run. - CI Fuzz exit code: Indicates whether the command ran successfully. For example:
0for success,1for failure. - OS version: OS and CPU architecture you are using. For example:
windows/amd64. - CI Fuzz command duration: How long the CI Fuzz command took to run. For example:
1500 [miliseconds]. - Did CI Fuzz ran in a CI/CD: A true/false value indicating whether CI Fuzz ran in a CI/CD environment. For
example:
truewhen running in Jenkins pipeline. - What build system CI Fuzz tested: The build system that was tested. For example:
maven. - What flags were passed to CI Fuzz: The flags that were used in the command. We don't collect their values, but
only their presence. For example:
[json, seed-corpus, verbose]fromcifuzz run --json --seed-corpus /my-corpus -v. - Were there any Findings: A true/false value indicating whether CI Fuzz created new Findings. For example:
true.
This data is sent via HTTPS to a telemetry endpoint on code-intelligence.com. Data is stored in our Azure account and
is used for product analytics.
Opting Out
We attempt to collect telemetry data by default. If we can't establish a secure connection to code-intelligence.com,
data is not collected. You can opt out of telemetry by setting the CIFUZZ_TELEMETRY environment variable to false.
CIFUZZ_TELEMERY=false cifuzz run
You can also opt out by updating a configuration file cifuzz/config.yaml in
your user configuration directory. To disable telemetry collection, the file
should contain the following:
telemetry: false