Issue #45 : Software Testing Notes
🧬 Blockchain Testing • 🔒 API Security Testing With Postman and OWASP Zap • 📝 The Ultimate Software Test Planning Checklist
Hello there! 👋
Welcome the 45th edition of Software Testing Notes, a weekly newsletter featuring must-read content on Software Testing. I hope this week has been good for you so far.
Consider subscribing if you haven’t already 👇
Describing quality can be quite hard, even for someone with years of experience. But it doesn’t always have to be. Just drop all the hard to use Jargons and you will find that it’s not actually that hard that everyone seems to be making.
Approach to Quality can be very personal and many use and change them when using with context of the team or personally.
“We write software so that we can make people’s lives better.”
With that being said, let dig into this week’s curated links. I have lots of nice reads for you this week, hit replay or post comment and let me know what your favorite is!
📚 On Testing
One way to look at a test plan is as a collection of risks work managing. Matthew Heusser shares checklist in this article and provides ideas for what those risks might be and how to handle them, along with what to call out of scope.
To become a good tester, you need both technical and soft skills. In this post, Klaudia Dziubek shares 5 soft skills and 5 technical skills that are the best set for every tester.
Ravisuriya shares in this blog post about his interpretation of Model, Oracle and Perceived Quality and the understanding of it.
Exceptions are hard, that’s why they are exceptions right 😂. William Wake explores this and looks at a refactoring to move code to use the lambda / closure approach.
Blockchain has become a buzzword in the tech world lately. But how exactly do you go about testing it? This article by Afsal Backer explain everything you need to know to get started.
➜ Read all curated stuff on Software Testing here.
Creating lasting change requires changes to the tools, the processes, and, most importantly, the mindset of the stakeholders involved. Daniel Burns shares these 3 mindset changes must be achieved in order to succeed with test automation for the long term.
With testing, it's tough to know what's the right thing to automate. Dennis Martinez lays out two questions which will help guide you towards the right path.
In this post, Filip Hric explores some of the core principles of Cypress chains and how understanding them can make you write your tests better.
Great step by step walkthrough by Steve Mellor of running Selenium tests on multiple browsers.
Pact Webhooks allow you to automate your contract testing efforts more and along with the can-i-deploy command, it ensures that consumers and providers are adhering to the data contract before changes are deployed to production. Learn how to use them in this post by Marie Drake.
A very detailed article on configuring API requests on Postman and executing them on Azure DevOps. Kalle Marjokorpi did a really great job in this article.
➜ Read all curated stuff on Software Testing Automation here.
The new Lighthouse user-flow API provides extra possibilities for analyzing user front-end performance - as shown in this article by Hugh McCamphil you leverage WebdriverIO existing code to do any required navigation and form filling.
➜ Read all curated stuff on performance Testing here.
Take a look at some industry-standard and high-level ways to improve application security.
In this article, Andreea Draniceanu dives into Pen testing methodology, approaches To pen testing and the main types of Penetration Testing?
Usama Ahmed explores Key Differences Between Vulnerability Scanning And Penetration Testing and Why Should You Perform Vulnerability Scans And Penetration Tests?
Great article by Mohamed Tarek using Postman to send requests to OWASP Zap to be able to start automated pen-testing.
Kishan B shares step by step process of using ZAP to perform security testing.
➜ Read all curated stuff on Security Testing here.
🛠️ Resources & Tools
Toxiproxy — A framework for simulating network conditions made specifically to work in testing, CI, and development environments.
PrivacyTests.org — Online guide to understand in detail what data each web browser is leaking and which web browsers offer the best privacy protections.
eslint-plugin-jsx-a11y —Static abstract syntax tree (AST) checker for accessibility rules on JSX elements.
📝 List of Software Testers
It's hard to find good articles, podcasts on Software Testing. Even hard to find people who create them. Are you also looking for amazing software testers to follow or read their content ? check out this page dedicated to software testers.
Do you also create content around Software Testing ? Submit yours here and I will add it to the list.
🎁 Bonus Content
OTHER INTERESTING STUFF
The Value of Adding Value by Doug Dickerson
LAST WEEK'S MOST READ
😂 And Finally,
Keep Smiling and have a fun week.
📨 Send Me Your Articles, Tutorials, Tools!
👋 Reach Out
You can follow @thetestingkit to keep up-to-date on the community & fresh links to read.
Thanks so much for reading ,
Pritesh- Software Testing Notes