ossf
diff --git a/‎.github/workflows/ci.yml‎
Lines changed: 4 additions & 3 deletions b/‎.github/workflows/ci.yml‎
Lines changed: 4 additions & 3 deletions
diff --git a/‎CHANGELOG.md‎
Lines changed: 1 addition & 0 deletions b/‎CHANGELOG.md‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎docs/meeting/2026-04-20/.gitignore‎
Lines changed: 1 addition & 0 deletions b/‎docs/meeting/2026-04-20/.gitignore‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎docs/meeting/2026-04-20/2026-04-20.pdf‎
427 KB b/‎docs/meeting/2026-04-20/2026-04-20.pdf‎
427 KB
diff --git a/‎docs/meeting/2026-04-20/2026-04-20.pptx‎
996 KB b/‎docs/meeting/2026-04-20/2026-04-20.pptx‎
996 KB
diff --git a/‎docs/meeting/2026-04-20/OSS-CRS Timeline OpenSSF Bi-Weekly 01-12 Slide 2.svg‎
Lines changed: 1 addition & 0 deletions b/‎docs/meeting/2026-04-20/OSS-CRS Timeline OpenSSF Bi-Weekly 01-12 Slide 2.svg‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎docs/meeting/2026-04-20/template.md‎
Lines changed: 75 additions & 0 deletions b/‎docs/meeting/2026-04-20/template.md‎
Lines changed: 75 additions & 0 deletions
diff --git a/‎docs/meeting/Makefile‎
Lines changed: 2 additions & 2 deletions b/‎docs/meeting/Makefile‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎example/42-directed/compose.yaml‎
Lines changed: 19 additions & 0 deletions b/‎example/42-directed/compose.yaml‎
Lines changed: 19 additions & 0 deletions
diff --git a/‎example/42-seedgen/compose.yaml‎
Lines changed: 29 additions & 0 deletions b/‎example/42-seedgen/compose.yaml‎
Lines changed: 29 additions & 0 deletions
@@ -10,6 +10,7 @@ on:
       - "libCRS/**"
       - "uv.lock"
       - "pyproject.toml"
+      - ".github/workflows/**"
       - "!**/*.md"
 
 jobs:
@@ -142,6 +143,9 @@ jobs:
 
   smoke-c-patch:
     name: Smoke test (C patching)
+    if: |
+      github.actor != 'dependabot[bot]' &&
+      github.event.pull_request.head.repo.full_name == github.repository
     runs-on: ubuntu-latest
     needs: [verify]
     timeout-minutes: 40
@@ -273,9 +277,6 @@ jobs:
     runs-on: ubuntu-latest
     needs: [verify]
     timeout-minutes: 30
-    env:
-      EXTERNAL_LITELLM_API_BASE: ${{ secrets.EXTERNAL_LITELLM_API_BASE }}
-      EXTERNAL_LITELLM_API_KEY: ${{ secrets.EXTERNAL_LITELLM_API_KEY }}
     steps:
       - uses: actions/checkout@v4
       - uses: astral-sh/setup-uv@v7
 
@@ -17,6 +17,7 @@ stricter subset of Keep a Changelog).
 - roboduck to registry/ and example/
 - fuzzing-brain to registry/ and example/ (bug-finding, C/C++, multi-provider LLM)
 - buttercup-seed-gen to registry/ and example/
+- 42-directed and 42-seedgen to registry/ and example/
 - `libCRS download-source fuzz-proj <dest>`: copies clean fuzz project
 - `libCRS download-source target-source <dest>`: copies clean target source
 - Warn user when compose file resource configs exceed machine resources (#49)
 
@@ -0,0 +1 @@
+!*.svg
@@ -0,0 +1,75 @@
+---
+marp: true
+theme: default
+paginate: true
+html: true
+---
+
+# Meeting Notes
+
+OpenSSF Cyber Reasoning Systems Special Interest Group
+
+---
+
+## Agenda
+
+1. Roadmap
+2. Community Contributions
+3. Atlantis-Java
+
+---
+
+## Roadmap (from 01/12 meeting)
+
+<style scoped>h2 { font-size: 1.2em; margin-bottom: 0.2em; } img { max-height: 580px; display: block; margin: auto; }</style>
+
+![Roadmap](./OSS-CRS%20Timeline%20OpenSSF%20Bi-Weekly%2001-12%20Slide%202.svg)
+
+---
+
+## Roadmap
+
+<style scoped>input[type="checkbox"] { opacity: 1; transform: scale(1.3); margin-right: 8px; }</style>
+
+<ul style="list-style: none; padding-left: 0;">
+<li><input type="checkbox" checked disabled> Complete implementation of CRS benchmarks: <b>CRSBench project currently undergoing experiments</b></li>
+<li><input type="checkbox" checked disabled> Unify bug-finding and bug-fixing features: <b>Complete as of <a href="https://github.com/ossf/oss-crs/pull/162">#162</a> (builder-sidecar)</b></li>
+<li><input type="checkbox" checked disabled> Integration of AIxCC finalists' CRSs: <b>All AFC bug-finding CRSs integrated</b></li>
+<li><input type="checkbox" disabled> Re-architect for remote deployment: <b>development blocked on Azure account provisioned by GT</b></li>
+<li><input type="checkbox" disabled> Deploy for real-world bug finding and patching</li>
+</ul>
+
+---
+
+## Required Items for Deployment
+
+- **Triaging**: Add new CRS type to OSS-CRS pipeline
+    - Clusterfuzz crash deduplication
+    - Triagers from AIxCC CRSs
+    - agentic triaging and report generation
+- **Target Projects**: Selected suite of OSS projects that we run our CRSs against
+
+---
+
+## Atlantis-Java
+
+Check out the blog and paper below to learn more about agentic sinkpoint-fuzzing and the performance of open weight LLMs! 
+
+Atlantis-Java is updated and remains accessible through OSS-CRS
+
+- [Team-Atlanta Blog: SinkFuzz GLM](https://team-atlanta.github.io/blog/post-sinkfuzz-glm/)
+- [GONDAR arXiv paper](https://arxiv.org/abs/2604.01645)
+
+---
+
+## Community Contributions
+
+- [#159](https://github.com/ossf/oss-crs/pull/159) : Warn users if resource config conflicts with machine resources (@tkqdldk)
+- [#168](https://github.com/ossf/oss-crs/pull/168) : Docker Compose secrets for LLM keys (@tusharshah21)
+- [#171](https://github.com/ossf/oss-crs/pull/171) : patchsense-crs semantic patch validator to registry (@aaronsrhodes)
+
+---
+
+## Q&A / Discussion
+
+Refer to Cyber Reasoning Systems bi-weekly meeting notes.
@@ -15,10 +15,10 @@ $(DATES:%=%/main.md): %/main.md: %/template.md
 	mmdc -i $< -o $@
 
 $(PDFS): $$(dir $$@)main.md
-	marp --allow-local-files $< --pdf -o $@
+	marp --html --allow-local-files $< --pdf -o $@
 
 $(PPTXS): $$(dir $$@)main.md
-	marp --allow-local-files $< --pptx -o $@
+	marp --html --allow-local-files $< --pptx -o $@
 
 clean:
 	rm -f $(TODAY)/main.md $(TODAY)/$(TODAY).pdf $(TODAY)/$(TODAY).pptx
@@ -0,0 +1,19 @@
+##############################################################################
+#                        CRS Compose Configuration                           #
+#              Example for 42-directed (bug-finding)                         #
+##############################################################################
+
+# --- General Settings -------------------------------------------------------
+run_env: local
+docker_registry: local
+
+# --- Infrastructure ---------------------------------------------------------
+oss_crs_infra:
+  cpuset: "0-1"
+  memory: "8G"
+
+# --- CRS (42-directed) -----------------------------------------------------
+# Generates seeds using LLM-based agents and registers them in shared directory.
+42-directed:
+  cpuset: "8-16"
+  memory: "32G"
@@ -0,0 +1,29 @@
+##############################################################################
+#                        CRS Compose Configuration                           #
+#              Example for 42-seed-gen (bug-finding)                         #
+##############################################################################
+
+# --- General Settings -------------------------------------------------------
+run_env: local
+docker_registry: local
+
+# --- Infrastructure ---------------------------------------------------------
+oss_crs_infra:
+  cpuset: "0-1"
+  memory: "8G"
+
+# --- CRS (42-seed-gen) -----------------------------------------------------
+# Generates seeds using LLM-based agents and registers them in shared directory.
+42-seedgen:
+  cpuset: "2-7"
+  memory: "16G"
+  llm_budget: 10
+  additional_env:
+    SEEDGEN_GENERATIVE_MODEL: claude-sonnet-4-5-20250929
+    SEEDGEN_INFER_MODEL: o3-mini
+    SEEDGEN_KNOWLEDGEABLE_MODEL: gpt-4o
+    NUM_SEEDS: "100"
+
+# --- LLM Configuration -----------------------------------------------------
+llm_config:
+  litellm_config: ./example/42-seedgen/litellm-config.yaml