Igor Popov: Mutation Testing at I T.A.K.E. Unconference 2015

•

1 like•1,043 views

Mozaic Works

igor @ igorpopov.io
25 YEARS OF MARINE
SOFTWARE EXCELLENCE
www.napa.fi

Quis custodiet ipsos custodes? Better known as: *Who watches the watchmen?* We are all writing tests, doing TDD, BDD. We measure the quality of the tests with line coverage or (even better) branch coverage. This gives you a false sense of security. I've seen projects with tests which have 100% branch coverage but not a single assertion! This is where mutation testing helps out. By creating broken mutated instances of your codebase (mutants) this should result in failing unit tests. This way we can verify that slight code changes (like real life bugs) actually break your tests. In this talk I'll explain what mutation testing is and how it works. We'll also compare some Java frameworks (PIT, Jester, Jumble) that enable automatic mutation testing in your continuous build and how you can start doing mutation testing *right now*.

Dev ops and safety critical systems

Len Bass

Architecture for the cloud deployment case study future

Len Bass

presentation-chaos-monkeyMatthew Campbell

The basics you need to know to get up and running with Chaos Monkey in your Amazon Web Service's Cloud enviornment. Links: CloudFormation Template: https://github.com/joehack3r/aws/blob/master/cloudformation/templates/chaosMonkey.json Simian Army Quick Start Guide: https://github.com/Netflix/SimianArmy/wiki/Quick-Start-Guide Chaos Monkey Configuration: https://github.com/Netflix/SimianArmy/wiki/Chaos-Settings Chaos Monkey Army: https://github.com/Netflix/SimianArmy/wiki/The-Chaos-Monkey-Army

Mutation Testing

ESUG

Netflix security monkey overview

Ryan Hodgin

Mini-Training: Netflix Simian Army

Betclic Everest Group Tech Team

Devops at Netflix (re:Invent)

Jeremy Edberg

تحليل النظم

Kohinour Osman

ARC301 Intro to Chaos Monkey & the Simian Army - AWS re: Invent 2012

Amazon Web Services

Creating my contents pagetomgoodyear

External financial support for researchers and academicsMoayad Alserihi

Taking Lecture Noteshouxy

Illustrated properties training presentation 07-19-13ipreproperties

RNA Contractor WHS Induction

Brendan McBain

Evolució històrica mery5

Trabajo Microp.1

marizolleonsita

Agile Retrospectives

Mozaic Works

What are the prerequisites of a successful retrospective? What impediments should be analysed during this meeting? Does the goal of the retrospective influence its format? What are some retrospective formats and what kind of activities do they require for each step? These are some of the questions I will answer during this talk. Expect a lot of examples which will generate insights on how to create custom retrospectives fit for your team.

Developer Experience to Testing

Mozaic Works

Create Software Design with unit testing, build user experience with UX testing, check definition of done with functional testing – all these are my day-to-day activities. Indeed, I am a developer who has found the value of testing to deliver quality software. In this presentation I share with you how I have come to use tests for: understanding the features, choosing the best user experience design, choosing the best technical solution, implementing the features and test them to create a reliable system. You will see practical examples of how tools like Jasmine, Spock, Geb are used for the above types of tests. You will see a project with test code and we will discuss how testing can effectively enhance your professional performance.

Story mapping: build better products with a happier team

Mozaic Works

Viewers also liked

Cloud Security At Netflix, October 2013

Jay Zarfoss

Practical Security Automation

Jason Chan

Release the Monkeys ! Testing in the Wild at Netflix

Gareth Bowles

Mutation testing in Java

Wojciech Langiewicz

Netflix: A State of Xen - Chaos Monkey & Cassandra

DataStax Academy

Intro to Netflix's Chaos Monkey

Michael Whitehead

Mutation Testing

ESUG

Netflix security monkey overview

Ryan Hodgin

Mini-Training: Netflix Simian Army

Betclic Everest Group Tech Team

Devops at Netflix (re:Invent)

Jeremy Edberg

تحليل النظم

Kohinour Osman

ARC301 Intro to Chaos Monkey & the Simian Army - AWS re: Invent 2012

Amazon Web Services

Creating my contents pagetomgoodyear

External financial support for researchers and academicsMoayad Alserihi

Taking Lecture Noteshouxy

Illustrated properties training presentation 07-19-13ipreproperties

RNA Contractor WHS Induction

Brendan McBain

Evolució històrica mery5

Trabajo Microp.1

marizolleonsita

Viewers also liked (19)

Cloud Security At Netflix, October 2013

Practical Security Automation

Release the Monkeys ! Testing in the Wild at Netflix

Mutation testing in Java

Netflix: A State of Xen - Chaos Monkey & Cassandra

Intro to Netflix's Chaos Monkey

Mutation Testing

Netflix security monkey overview

Mini-Training: Netflix Simian Army

Devops at Netflix (re:Invent)

تحليل النظم

ARC301 Intro to Chaos Monkey & the Simian Army - AWS re: Invent 2012

Creating my contents page

External financial support for researchers and academics

Taking Lecture Notes

Illustrated properties training presentation 07-19-13

RNA Contractor WHS Induction

Evolució històrica

Trabajo Microp.1

Recently uploaded

Generative AI Deep Dive: Advancing from Proof of Concept to Production

Aggregage

A tale of scale & speed: How the US Navy is enabling software delivery from l...

sonjaschweigert1

Rapid and secure feature delivery is a goal across every application team and every branch of the DoD. The Navy’s DevSecOps platform, Party Barge, has achieved: - Reduction in onboarding time from 5 weeks to 1 day - Improved developer experience and productivity through actionable findings and reduction of false positives - Maintenance of superior security standards and inherent policy enforcement with Authorization to Operate (ATO) Development teams can ship efficiently and ensure applications are cyber ready for Navy Authorizing Officials (AOs). In this webinar, Sigma Defense and Anchore will give attendees a look behind the scenes and demo secure pipeline automation and security artifacts that speed up application ATO and time to production. We will cover: - How to remove silos in DevSecOps - How to build efficient development pipeline roles and component templates - How to deliver security artifacts that matter for ATO’s (SBOMs, vulnerability reports, and policy evidence) - How to streamline operations with automated policy checks on container images

Secstrike : Reverse Engineering & Pwnable tools for CTF.pptx

nkrafacyberclub

Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf

91mobiles

LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...

DanBrown980551

Do you want to learn how to model and simulate an electrical network from scratch in under an hour? Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)! During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook. PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides: - A fully editable and extendable library for grid component modelling; - Visualization tools to display your network; - Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses; The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well. What you will learn during the webinar: - For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills; - For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.

Pushing the limits of ePRTC: 100ns holdover for 100 days

Adtran

RESUME BUILDER APPLICATION Project for students

KAMESHS29

DevOps and Testing slides at DASA Connect

Kari Kakkonen

Enhancing Performance with Globus and the Science DMZ

Globus

GraphRAG is All You need? LLM & Knowledge Graph

Guy Korland

Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs. 1. Unifying Large Language Models and Knowledge Graphs: A Roadmap. https://arxiv.org/abs/2306.08302 2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs: https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/

Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...

SOFTTECHHUB

The choice of an operating system plays a pivotal role in shaping our computing experience. For decades, Microsoft's Windows has dominated the market, offering a familiar and widely adopted platform for personal and professional use. However, as technological advancements continue to push the boundaries of innovation, alternative operating systems have emerged, challenging the status quo and offering users a fresh perspective on computing. One such alternative that has garnered significant attention and acclaim is Nitrux Linux 3.5.0, a sleek, powerful, and user-friendly Linux distribution that promises to redefine the way we interact with our devices. With its focus on performance, security, and customization, Nitrux Linux presents a compelling case for those seeking to break free from the constraints of proprietary software and embrace the freedom and flexibility of open-source computing.

Assure Contact Center Experiences for Your Customers With ThousandEyes

ThousandEyes

Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...

James Anderson

Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management. The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM). Speakers: Bob Boule Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle. Gopinath Rebala Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.

FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf

FIDO Alliance

FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf

FIDO Alliance

Quantum Computing: Current Landscape and the Future Role of APIs

Vlad Stirbu

Transcript: Selling digital books in 2024: Insights from industry leaders - T...

BookNet Canada

The publishing industry has been selling digital audiobooks and ebooks for over a decade and has found its groove. What’s changed? What has stayed the same? Where do we go from here? Join a group of leading sales peers from across the industry for a conversation about the lessons learned since the popularization of digital books, best practices, digital book supply chain management, and more. Link to video recording: https://bnctechforum.ca/sessions/selling-digital-books-in-2024-insights-from-industry-leaders/ Presented by BookNet Canada on May 28, 2024, with support from the Department of Canadian Heritage.

The Future of Platform Engineering

Jemma Hussein Allen

Monitoring Java Application Security with JDK Tools and JFR Events

Ana-Maria Mihalceanu

Climate Impact of Software Testing at Nordic Testing Days

Kari Kakkonen

My slides at Nordic Testing Days 6.6.2024 Climate impact / sustainability of software testing discussed on the talk. ICT and testing must carry their part of global responsibility to help with the climat warming. We can minimize the carbon footprint but we can also have a carbon handprint, a positive impact on the climate. Quality characteristics can be added with sustainability, and then measured continuously. Test environments can be used less, and in smaller scale and on demand. Test techniques can be used in optimizing or minimizing number of tests. Test automation can be used to speed up testing.

Recently uploaded (20)

Generative AI Deep Dive: Advancing from Proof of Concept to Production

A tale of scale & speed: How the US Navy is enabling software delivery from l...

Secstrike : Reverse Engineering & Pwnable tools for CTF.pptx

Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf

LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...

Pushing the limits of ePRTC: 100ns holdover for 100 days

RESUME BUILDER APPLICATION Project for students

DevOps and Testing slides at DASA Connect

Enhancing Performance with Globus and the Science DMZ

GraphRAG is All You need? LLM & Knowledge Graph

Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...

Assure Contact Center Experiences for Your Customers With ThousandEyes

Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...

FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf

FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf

Quantum Computing: Current Landscape and the Future Role of APIs

Transcript: Selling digital books in 2024: Insights from industry leaders - T...

The Future of Platform Engineering

Monitoring Java Application Security with JDK Tools and JFR Events

Climate Impact of Software Testing at Nordic Testing Days