Bug Bounties, Accessibility Testing, MLOPS, and More!

An incredible new way to keep your apps accessible and your end-to-end tests stable. Did you hear what event just put out a call for speakers? Have you seen the shocking number of bugs caught with bug bounties? Find out the answers to these and all other and full pipeline DevOps software testing on automation testing, performance testing, and security testing in ten minutes or less in this episode of the #testguild news show for the week of September 11th.

So grab a cup of coffee or tea, and let's do this.

Are you Missing out on the Benefits of Visual AI??

The awesome folks at Applitools sponsor this episode of the Test Guild news show. Applitools is a next-generation test automation platform powered by visual AI, which helps you increase quality, accelerate delivery, and reduce costs. Well, what I think is the world's most intelligent test automation platform. But seeing is believing.

???????So, create your free account now before this offer ends.

First up, Automation Testing news.

So Christian Broman, the creator of WebDriverIO, just released a new blog article talking about ?? new features of WebDriver IO to help keep your apps more accessible and your e2ed tests more stable. As you know, fetching elements with e2e tests can sometimes be challenging. And because of this, using complex CSS paths or arbitrary test IDs make them either less readable or prone to failure. But a new feature by WebDriverIO called the Accessibility selector now provides a powerful way to fetch various elements containing a particular accessibility name. So you should check a WebDriverIO if you haven't already.

Another must-know automation framework that you should know about is Serenity. The creator of Serenity, John Ferguson Smart, announced some new cool features in their version of ?? Serenity. BDD 3.30.1. This latest version of Serenity now includes support for Selenium 4, W3C capabilities, and a stack of new screenplay interaction classes. The screenplay pattern is prevalent. I've heard from many people that this pattern has made their tests more reliable and easy to maintain, and they've performed better than page objects in certain instances.

I always love Real-World implementation articles on how people achieve certain functionality, so this next article comes your way via Sergio. He talks about how he's experimented with the new tool used for data consolidation and test analysis. So the post dives into how he ?? exported test results from X-ray to Splunk. And it gave him even more profound insight than we would typically get. The article also has a little background on what led Sergio to this point, a how-to section, search for specific results, and cool ways of charting to show your findings visually. So definitely a must-read article.

So I'm not sure if you listen to my latest Test Guild Automation podcast. Still, if not, I'd just put out a call for speakers for the 2023 Automation Guild, the seventh annual online event dedicated 100% to automation testing. The first thing I always do before running an event is I've run a survey to my guild members, who give me feedback on something they're struggling with or topics I'd like to hear more about. Then once I get those results, I put them all together, and then I do a call for speaker based on those results. The ?? call for speakers page goes over some of the topics we're looking for that the Guild said they were interested in learning more about, And this is for all experts. It doesn't necessarily mean you need to be an established speaker. If you have had success with a tool, technique, or best practice and you've never spoken out at an event before, I want to hear from you. I'm looking for experts who have hands-on knowledge. So if that's you, I highly recommend you submit your session idea.

So I think the economy might be getting better. And I say that because I haven't seen money segments for six months. And suddenly, I'm seeing more money companies getting funding again.

So here's one of three money segments we have on this episode.

And the first is how a ?? DevOps automation platform raised $4.3 million. And the company is called Zeet, which I had never heard about, but it's a platform/interface for developers to make the most out of the cloud. And this is a growing trend in how cloud deployment and cloud computing has become more powerful. So I assume we'd see more and more companies release solutions to help you with this. And Zeet is one of these solutions. Zeet allows developers to move applications between clouds reducing latency and utilizing specialized services from each cloud. So it supports multiple clouds, including Amazon Web services, Google Cloud services, digital ocean, and many others. I've never used it before, but it looks like a cool solution. If you have, let me know your thoughts about it.

So this next money segment is how Arize AI lands 38 million to grow its ML ops platform for the enterprise. Arize is a machine learning operation ?? MLOps platform. You can use it to help you deploy and maintain machine learning models in production. It's similar to DevOps, except MLOPs aims to increase automation while improving the quality of the production models, but not at the expense of business and regulatory requirements. So once again didn't know about Arise, but looking at their homepage, they list some of its main benefits: it helps you detect, troubleshoot, and eliminate ML model issues faster.?

So this is the last of the money segment. It's how this next company, QAWolf, who's been in stealth mode for a while, just announced a round of $20 million in funding. So ?? QAWolf is a cloud-based platform that helps you detect bugs in software. So this article also mentions how there are a lot of solutions out there around this space. But QAWolf tries to stand out by removing the complexity of quality assurance testing in a way they believe others have done before. So that grabbed my attention. So I said, okay, what's this all about? And according to their homepage, QAWolf is "zero effort automated QA." That's a pretty big claim, I haven't tried it, but they back up that claim by saying get you 80% of coverage in four months and keep you there, so your team can stay focused on shipping. So is that claim valid? I don't know, but if you have, I'd love to hear about your experience.

Next Performance and Site Reliability News.

All right, so this article is all about a new version of k6 and what the features include. I know this seems to be on the show all the time, but k6 is always coming up with new features, and it's a top-rated performance tool.?

This ?? latest version is 0.40.0, and based on the release notes, a lot of it includes breaking changes and announcements. But the more exciting thing is some of these new features, these experimental modules. So there are three of these, and the first one helps you support interactions with Redis. The second is a new Websocket API that copies the WebSocket API, which sounds pretty cool and adds some clear time in clear interval implementations. And it also goes over some examples of the Redis and the Websocket experimental features and their use.

Next up, security testing news.

So, where does Pen Testing fall into your DevSecOps pipelines? Well, this next article goes over just that. It hits the mark starting with the first sentence:

Penetration Testing not only serves as a way of triaging and validating other defects discovery activities, but it also informs risk management activities such as threat modeling and secure design.

?? Pen testing is a valuable technique I think all testers need to know about, and here is one more reason why.

Is a bug bounty worth doing? While according to the following article? They sure are. This article describes how ?? Lazada's live bug bounty uncovered 115 vulnerabilities. So if you're not using bug bounty programs, hopefully, this article will reinforce how they're a game changer for many organizations regarding cybersecurity.?

And a lot of companies I know do invest heavily in proactive cybersecurity solutions. But the reality is, just like exploratory testing probably finds more bugs than automated testing, this sounds like bug bounties do the same regarding cybersecurity risk.

So that's it for this Test Guild News Show Newsletter edition.?

I'm Joe, and my mission is to help you succeed in creating end-to-end full-stack Pipeline automation awesomeness.?

As always, test everything and keep the good. Cheers.

Let's Talk

The TestGuild is a community of 27k of some of the most brilliant automation testers on the planet, and the curators of the world's best tools, software, knowledge, and services for all things test automation related.?

Do you have DevOps/automation software or service that you want to share with the world? Let's talk and ???????See how we can help you!