InfoQ Homepage Software Testing Content on InfoQ
-
ClusterFuzzLite Brings ClusterFuzz to GitHub Actions and Other CI/CD Pipelines
ClusterFuzzLite, as implied by its name, is a light version of Google ClusterFuzz, a tool aimed to find security and stability issues in software systems through fuzz testing. ClusterFuzzLite is meant to be integrated in a CI pipeline with a few lines of code, says Google.
-
Go Gets Fuzz Testing Support in Beta
The Go team has announced fuzzing support is now available for beta testing. The main goal of the project is to create a unified and end-to-end experience for developers and users of the language, including robust module support, integration with the go command, and new compiler instrumentation.
-
Adding Security to Testing to Enable Continuous Security Testing
Teams can be trained by security experts to become able to identify areas to add security testing in the test process and add security checks as part of functional test automation. This can lead to continuous security testing where security defects can be spotted at an early stage with higher security testing coverage in every release.
-
Shifting Quality Left with the Test Pyramid
Shifting quality left means building in quality much earlier in the software development cycle, rather than testing for quality after completion of development. Using the test pyramid model, a project was able to move testing towards earlier stages, thereby finding defects that caused integration issues earlier in development.
-
The Challenges of End-to-End Testing of Microservices
Microservices work well with independent teams who have end-to-end responsibility and use an automated CI/CD pipeline. Ensuring software quality through end-to-end testing can conflict with rapidly integrating and releasing software components. If an end-to-end test fails, the CI/CD pipelines of all involved microservices are blocked until the problem causing the test to fail is solved.
-
2021 State of Testing Survey: Call for Participation
The 2021 State of Testing survey aims to provide insights into how the testing profession develops and to recognize the adoption of testing practices and testing trends. The survey is open through December.
-
Introduction to Mutation Testing - Dave Aronson at JSConf Hawaii
Dave Aronson gave at JSConf Hawaii 2020 an introduction to mutation testing. Aronson presented the rationale behind mutation testing, its benefits, drawbacks and pitfalls, and how it works under the hood.
-
Airbnb Transfers Ownership of Enzyme, Its React Testing Library
Airbnb transferred ownership of Enzyme, its React testing library, to the new enzymejs GitHub organization. Airbnb nonetheless plans to continue to use and contribute to Enzyme.
-
Storybook 5.3 Released, Targets Design Systems, Supports Web Components
Storybook 5.3 was recently released and strives to allow developers to build production design systems faster. Storybook users can now document their components with MDX, have a documentation site automatically generated, and integrate with popular design tools like Sketch, Figma or Adobe XD. Storybook 5.3 also now officially supports web components.
-
A Guide to Writing Properties of Pure Functions - John Hughes at Lambda Days 2020
John Hughes, co-designer of Haskell and Quickcheck, recently discussed property-based testing at Lambda Days 2020. Hughes presented in his talk five different strategies for coming up with properties and compared their effectiveness. Metamorphic and model-based properties reportedly show high effectiveness.
-
Yelp Open-Sources Fuzz-Lightyear, A Swagger-Based IDOR Vulnerability Detector
Business directory and crowd-sourced review service, Yelp, has open-sourced their in-house security testing framework, fuzz-lightyear, that identifies Insecure Direct Object Reference (IDOR) vulnerabilities.
-
2020 State of Testing Survey: Call for Participation
The 2020 State of Testing survey is now seeking participation, and aims to provide insights into how the testing profession develops and to recognize testing trends. Anyone completing the survey will receive a complimentary copy of the State of Testing 2020 report once it is published.
-
Accessibility Testing: Convincing Your Product Owner
Accessibility testing is just the right thing to do; the internet and e-services are a place for people to feel and interact equally, so our software should not exclude people, argued Martin Tiitmaa at TestCon Europe 2019.
-
Introduction to Stateful Property Based Testing - Lambda Days 2019
Tomasz Kowal, tech lead at ClubCollect, presented at Lambda Days 2019 an introduction to stateful property based testing. Property-based testing helped major companies find bugs which were not caught through example-based testing. Stateful property-based testing leverages an underlying model of the system under test to generate interesting test sequences, increasing the likelihood of finding bugs.
-
Slack Shares Strategy Used to Load-Test New Encryption Service
Slack’s engineering team has revealed the load-testing strategy that has become a critical part of their continuous delivery pipeline, and suggests it promotes greater ownership by engineers. While the Slack engineers stated they had minimal load-testing experience, they built it from scratch using Go and used a methodical approach that offers a roadmap for engineers facing similar challenges.