Quality Assurance/Status 2012-2015

Last update on: 2012-11-21

2012-10-19
Zeljko Filipin has an initial set of browser tests checked in to Github. These will be moved into Gerrit soon.

2012-10-monthly
QA Engineer Željko Filipin has made great improvements to the existing automated browser tests and has created some new Mobile tests as well. Mobile QA Engineer Michelle Grover is creating an automatable regression test suite for MobileFrontend. These tests are currently running as builds under a hosted instance of Jenkins, with the intention of moving them to the WMF Continuous Integration environment pending upgrades to the machines hosting gerrit and Jenkins.

2012-11-06
Filipin and McMahon now have browser tests in Gerrit, in qa/browsertests. They are porting existing tests from RSpec to Cucumber. The UploadWizard test is the most complex and they're in the midst of porting it. See Qa/test backlog.

2012-11-13
Ported the toughest test (UploadWizard) to Cucumber, created backlog of tests to be automated, will introduce Cucumber to feature development soon.

Chris, this month, aims to socialize Cucumber acceptance test-writing (using "given-when-then" format) in browser testing, to get developers to more regularly write these tests as they work and commit. He'll be talking to Fabrice, Arthur, Siebrand, James Forrester, and probably Tomasz. Coverage goals: extensions that are on beta or test2 right now.

2012-11-monthly
Working on architecture, creating basic new tests, refactoring those for cleanliness. Cucumber is under active development and there aren't very high-quality tutorials & documentation to help people design tests well.

2012-11-21
SECURITY TESTING QUESTION PAPER

1. What is Security Testing? a) Brief test of major functional elements of a piece of software to determine if it’s basically operational b) A set of activities conducted with the intent of finding errors in software. c) Which confirms that the program can restrict access to authorized personnel and that the authorized personnel can access the functions available to their security level? d) That attempts to discover defects that are properties of the entire system rather than of its individual components. 2. A protocol used to control the secure sending of data on the internet is a) SMTP	b) HTTPS	c) TCP/IP	d) HTTP 3. A __________ is anything that can cause harm. a) Vulnerability	b) threat	c) attack	d) spoof 4. Software that sits on the Internet analyzing Web traffic is referred to as a: a) Worm	b) cracker	c) cookie	d) sniffer 5. What is XSS a) Cross Security System	b) Cross Site Scripting	c) Cross Site System		d) None 6. Security falls under _______ a) Compliance testing	b) Verifying compliance to rules	c) Functional testing	d) Ease of operations 7. The tool which is used for testing security of the software is a) Load Runner		b) Burp Suite pro	c) Quick Test Pro	d) Jmeter 8. Tool used for crawling content and functionality of an application in Burp suite is a) Sequencer		b) Proxy		c) Spider		d) Repeater 9. What is the standard IANA port number used for requesting web pages? a) 80			b) 53			c) 21			d) 25 10. The internet poses specific security problems because: a) It was designed to be easily accessible	 b) Everyone uses it c) Viruses cannot be controlled d) It changes so fast

Key Answers: 1.	c 2.	b 3.	a 4.	d 5.	b 6.	a 7.	b 8.	c 9.	a 10.	a 