quality assurance Questions

how to test vulnerability of ecommerce, whether the applied security is properly working or not?

whether the website can be hacked by anyone or not

In traditional waterfall and agile processes we implement a test strategy to set expectations (and receive feedback) on approach for a release (multiple sprints of work) and test summary to capture results of the execution (functionl, security, and performance testing).  

In a a CI/CD model when we have a 2 week sprint and plan to deploy every 2 weeks it seems a bit cumbersome to do a strategy and summary every 2 weeks.  Ideally the summary could be pulled from an automation tool and produced to a dashboard so that should not be too bad.

Is there a different approach to the strategy?  

Are there other quality tollgates (maybe a bad choice of words) that we should consider?

From a quality process audit perspective is there anything else to consider?

Any feedack appreciated.

-Jeff

By amna zafar - June 11, 20172 Answers

what should be responsibilities and skills they do have?

By Luis Gil - May 3, 20172 Answers

Have you been measuring how many defects you find at unit testing and system testing per KLOC and how much may cost to fix them?

 

I can find some information like:

with code reviews + unit testing one can find up to 70% of the defects.

https://www.iiitd.edu.in/~jalote/papers/2WCSQPaper.pdf

Other studies say that the cost of finding and fixing a defect at unit testing is $428 and at system testing is $1045.

http://www.ppi-int.com/systems-engineering/free%20resources/Software%20Q...

 

Do you know more benchmarks per industry type ?

What is your experience ?

 

Thanks in advance

 

Looking to ensure we meet EAL-4 for a product and need looking for the best reference material. Thank you. 

Curious to hear your thoughts (open source only) on preference for using Geb vs Selenium.

 

-Cheers

can you validate a test case at the device level by pointing to the results of a test case at the functional or unit level? (Can a Uit test be used for validation of a Device level test?  Can a Unit test be used to validate an Integration level test?)

Can you validate a test case by pointing to another test case at the same level? (i.e., can one DFS test be used to validate another DFS test?, can one Unit test be used to validate another Unit test?)

Hi!

I am looking for a tool that would go through a piece of code and would generate a list of all aspects that could / should be tested:

  • the interesting values of a variable: especially the values where decisions are based upon
  • all the possible combination at logic brenches: the combinations that lead the execution of the code to a specific path

That are two kinds of code that are actual at the moment:

  • C code
  • model-based development

Thanks for  your ideas and support!

Is automatic test design / preparation is long way to go? Can someone suggest me the set of domains / platforms where it is feasible and acheivable? Note: I am not referring Automatic Test Execution.

A compay having projects in several programming languages and frameworks, which agnostic testing tools do you know that can be used in all or several of them?

One example is cloc that counts lines of code.

Which others do you know for static analysis, traceability and other common testing tasks ?

Pages

StickyMinds is a TechWell community.

Through conferences, training, consulting, and online resources, TechWell helps you develop and deliver great software every day.