Project Wycheproof is a set of automated tests developers can run on their code and identify weaknesses or problems in the sections that deal with cryptography operations. Google says its engineers have used the tool to discover up to 40 security bugs in projects such as OpenSSL, Bouncycastle, JDK’s crypto libraries, and others. The test suites cover a series of common attack vectors on cryptographic algorithm implementations, such as invalid curve attacks, biased nonces in digital signature schemes, Bleichenbacher s attacks, and more.
Source: https://www.bleepingcomputer.com/news/security/google-releases-tool-to-help-developers-find-crypto-bugs/