A vulnerability in libsodium

I'm wondering how this could've been prevented. Wycheproof seems to only cover high level primitives, and IIRC neither Ed25519 nor X25519 explicitly check point validity, so you couldn't have caught this with higher level tests.

Is there something like Wycheproof, but for lower level primitives?