STAREAST 2022 - DevOps
Customize your STAREAST 2022 experience with sessions covering DevOps.
Monday, April 25
Instill a DevOps Testing Culture in Your Team and Organization
The DevOps movement is here. Companies across many industries are breaking down siloed IT departments and federating them into product development teams. Testing and its practices are at the heart of these changes. Traditionally, IT organizations have been staffed with mostly manual testers and a limited number of automation and performance engineers. To keep pace with development in the new “you build it, you own it” environment, testing teams and individuals must develop new technical skills and even embrace coding to stay relevant and add greater value to the business. DevOps really...
Wednesday, April 27
ALL the Ways AI Can Be Leveraged in QA
In these days of Machine learning initiatives where organizations are focusing on leveraging AI to ease the automation process, many others forget all of the other areas it can impact. Leandro will give you many other perspectives on how AI and Machine Learning can aid in test automation and the holistic approach to all the practices that make it possible to Assure Quality in our environments. He will show you how to leverage multiple areas from tracing, observability, test cases, defect logging, defect resolution, etc. Best of all, as usual, Leandro will turn the presentation into a light...
Test Your Unit Tests: Mutation Testing
Even if your code coverage is 80%, how much confidence do you have in your unit tests? Are they catching the edge cases? Can you fearlessly refactor? Add new features? Perhaps you are writing code that another team will rely on (or worse, you have to rely on!) Or maybe you have to untangle some ugly spaghetti code and want some idea of what it does before you start chopping it up. A mutation testing framework like PIT from pitest.org tests your JUnit tests and shows you what you are and aren’t testing. If your unit tests all pass, mutation tests make changes to a copy of your source code...
Quality Assurance Evolution and Analysis with AI / ML
In this age of explosive technological acceleration, cognitive technologies are converging to redefine how knowledge is synthesized, disseminated, and analyzed.New Technology platforms and tools, new methodologies with shorter development time and a constant demand to remain competitive and innovative has put the focus back on how testing is being carried out. We have seen usage of cognitive technologies in automation and performance test which helps achieve a level of auto-healing capability. It has been observed that testing teams have evolved to cope with demand and are using AI based...
Thursday, April 28
Why Salesforce Test Automation Shouldn’t Be Painful
In this talk, Mala will share a holistic view of the challenges of traditional software testing in the complex Salesforce testing ecosystem and provide a roadmap for leaders to overcome implementation roadblocks in partnership with R&D teams. Mala will demonstrate how an investment of a DevOps solution with a Sauce Labs integration helped her agile team achieve time reduction of up to 50% for overall flow, while doubling release velocity without additional headcount. If you are a manager looking to scale end-to-end testing coverage and/or wondering how to make your Salesforce test...
AI in Testing and Testing AI: A Moderated Panel
Synergies among AI and software testing include both leveraging AI for test automation, and devising methods for testing AI systems. Researchers, software vendors, and practitioners are already using AI to develop a new wave of test automation tools. These tools automatically explore, model, reason, learn, and test software applications. However, as with most AI and ML-based technologies, these tools raise concerns around whether or not we really trust and depend on them. ML-based systems tend to be highly dynamic and adaptable at runtime, thereby requiring extensive testing both offline,...
Testing in the Context of DevOps
DevOps aims to reduce the distance between development (software developers and quality assurance specialists) and operation (experts responsible for rolling out software to production and managing the infrastructure). The goals of DevOps are to increase the speed of software delivery process, to resolve critical issues quickly, and to enable organization to serve their customers better. These goals indicate that in DevOps, quality assurance, in general, and testing, in particular, should be looked at differently as compared to traditional testing and even agile testing. Specifically, the...
Raiders of the Lost AppSec
Remember the Indiana Jones movies? For those in infosec and security trying to navigate these days seems a lot like those movies. For instance, right from the very start of the series, we are shown how defense-in-depth is not enough - or have you forgotten that Indy escaped with the idol? Or how about how many of us, trying to keep up with threats, can relate to Indy, when going after a truck, said “I don’t know, I’m making this up as I go!”? And can't we ALL relate to trying to find the Security Holy Grail to help manage and mitigate risk – and felt the pain and scars from someone...
Testing Infrastructure Code: Best Practices and Common Mistakes
With the cloud, infrastructure such as networking, security, virtual machines, and much more is entirely software code now. Instead of manually creating cloud environments for applications and making changes, administrators write code to do that work. When changes are needed, that code is enhanced and re-run. Just like application code, infrastructure code needs to be tested. After all, code that introduces defects into existing environments can put developers, testers, and even end-users out of service. That said, most organizations do not adequately test infrastructure code. Anybody in...
Embracing Collaborative Chaos: Running Chaos Days on Large Platforms
Chaos Engineering reduces the impact of component failure. Chaos Days (aka Game Days) are one practice within this field, whereby controlled failures are used to learn and improve system and team response. We will describe how to run a Chaos Day on a large microservices platform, using our experience of doing this across 60 teams, 1000 microservices. The session will explore why you’d run a Chaos Day, and how to know when you and your platform are ready to do so. We’ll share our learnings of the actual mechanics of running one: how do you plan, execute and retrospect a Chaos Day. We’ll...
The Rise and Benefits of Robotic Process Automation (RPA)
Robotic Process Automation (RPA) is a term given to technology that allows developers to programmatically emulate the actions of a human to execute a business process. RPA often operates on the user interface (UI) layer to capture data or interact with an application or across multiple applications to perform tasks that are considered repetitive or time-consuming. Originally focused on business processes, many RPA solutions now integrate with testing tools. While the promises of easy adoption and scaling are made by almost every vendor, the reality is long-term commitment to an RPA program...
Enhance AppSec Maturity and Outcomes Using DevSecOps Metrics
Building a mature AppSec program is critical to the success of any product in managing the most vulnerable areas of the application. How can we ensure that the DevSecOps pipeline implemented is working effectively? The paper answers them by highlighting the key measures for every CISO to monitor and track the effectiveness of the AppSec maturity. The effective outcomes were measured by tracking 6 key metrics to validate if DevSecOps is successfully implemented. When done right, DevSecOps goes well beyond “shifting security left” to “shifting security everywhere” ensuring application is...
Page Object Model Pitfalls
Selenium has been around for over 15 years, and by now organizations have realized that Selenium tests need to be treated the same as any other functional code. This means not just keeping your tests in source control, but also designing them to be maintainable and robust. A common design pattern known as the Page Object Model (POM) has emerged, which greatly assists with organization and maintenance of tests. But there are scalability, speed, and robustness issues with this pattern. This has caused organizations to move away from Selenium for other tooling, however, most organizations are...