Testing in Agile: A Quick Tutorial on Defects, Bugs and Everything in Between

Defects and bugs are probably the most confusing topic of Agile testing. Should they be documented, sized and prioritized? Do they have to be fixed in the current sprint? What's the difference between a bug and a defect? Can number of bugs and defects be used as a metric of QA performance?

Here's a simple guide.

Most of the confusion around defects and bugs is caused by lack of common terminology. You don't have to agree with my definitions! Feel free to create your own, or use the word "bug" where I use "defect" and vice versa, but at the end of the day you should be able to differentiate between issues found during new development (I call them "defects") and issues found in your product that are pre-existing (I call them "bugs"). There's a third category of issues that were caused by recent development and really should have been found in feature testing, I call these little nasty things "bugs that are in fact escaping defects".

I hope it's pretty clear that the defects must be addressed during the same sprint they were found in. Otherwise, your story will not match the acceptance criteria and definition of "done", and you won't be able to close it. This is the classic "JUST FIX IT" situation.

Never size defects! The original story already has a size that includes all work needed to get it done - design, coding, manual and automated testing, defect fixing, documentation and whatever else you might have in your definition of "done".

It's up to you whether to document defects as separate items or not. If the team has great informal communication and things are done based on conversations and collaboration, then you can probably skip the paperwork around defects. If your team requires more formal interactions (remote team members, different time zones, hectic environment), consider creating a sub-task or a defect linked to the original story for tracking purposes. Again, no sizing.

Never count defects as a metric of code quality or QA effectiveness. This will only create convoluted incentives and artificial divides between developers and testers. Let the team figure out their quality. They should be able to confront each other and keep each other accountable for the quality of their work.

The only thing that really matters is this: when the team closes the story at the end of the sprint, it must be defect free. Think about it, it makes perfect sense! Why would you create a new piece of functionality and release it into the world when you know it's already flawed?

To reduce number of defects, make sure the team works as one from the very beginning of the sprint, developers and testers plan their work together, collaborate and focus on quality.

At the end of the sprint your goal should be ZERO DEFECTS!

Bugs are pre-existing issues found in production. The older your product is, the more bugs your system will have. I once worked on a legacy product that had 3,000 reported bugs in the tracking system. The nature of these "bugs" can be controversial. Sometimes your customers try to use the system in a way it wasn't designed for. Sometimes the load, volume or scale is more than the product can handle. Sometimes old issues that have been in the system since its inception become exposed through a different workflow. Sometimes you shoot yourself in the foot by making the application so flexible, your users do things you would never expect them to do. And sometimes a bug is just a bug - a system failure that happens under certain (maybe rare) circumstances.

To give even better definition, bug is a condition in which the system's actual behavior doesn't match the user's expectations. But guess what, sometimes the user's expectations don't match our (developers and PO) expectations.

Should we aim for ZERO BUGS?

No! Never try to fix all bugs, unless your system is very small and very new. Bugs have to be prioritized by the Product Owner and sized by the team. Always consider the ROI of fixing a bug vs developing a new feature - how many customers reported the issue? What's its severity? How often does it happen? What will happen if you never fix it (in many cases - nothing. Just leave it alone and focus on more important things). Also, look at the risk. Old bugs and design flaws can be dangerous - you can fix one thing and break ten others.

Treat bugs as product backlog items and pull them into your sprints according to priority.

Remember - as long as there is software, there will be bugs. They are inevitable, especially as your system becomes older and grows in scale.

Measuring number of reported bugs might be helpful, but not as a metric of development quality. To me it's more of a reflection of how much the users' expectations diverge from our understanding of the system. It's also a clue for how much the company should invest in support to keep the customers happy.

The third type of issues are bugs that have been recently introduced into the system. Let's say in Sprint A the team worked on a user story. Then in Sprint C a user reports an issue and after analysis the team realizes the bug was introduced in Sprint A. This happens all the time - we fix something or develop a new feature, and inadvertently break something else. Ideally, the defect should have been caught during Sprint A, but for some reason it wasn't. Instead it escaped and came back as a production bug.

We track these nasty beasts as "escaping defects". In Jira we mark them as "bugs", but then add a label that says "Escaping Defect". The team analyzes the root cause of each bug and tries to come up with a plan on how to improve their process going forward.

The number of Escaping Defects is a good measure of the team's quality. Aiming for zero escaping defects might be not realistic, especially in legacy systems with tons of dependencies and vast wildernesses of code written many years ago by people who are no longer with the company, but tracking the numbers across multiple sprints should demonstrate improvement based on learning, automation and refactoring.

How do you track, categorize and treat bugs and defects?

Please like and share with your network! Comment, share your thoughts and send me your questions, follow me on LinkedIn and Twitter to read my articles on practical Agile.

My other posts in "Testing in Agile" series:

• Is Manual Testing Primitive?
• Testing in Agile: Never Again Say "Deadline"
• Testing in Agile: The End of QA as We Know It
• Testing in Agile: The Sprint Is Too Short!
• Agile: A Dream of Working Together