Wrong usage of metric
TL;DR This post gives one daily example how metrics could be used in wrong way. On radio I heard weather condition report: “… and current temperature is missing one degree”….
TL;DR This post gives one daily example how metrics could be used in wrong way. On radio I heard weather condition report: “… and current temperature is missing one degree”….
TL;DR After Testival meetup, I always write short summary about what I learned on the meet up. This time learning went in both directions. I gave a talk about lateral…
TL;DR At one meetup, @neektza, excellent developer, asked me: “Karlo, I learned xy testing framework, but now I do not know which test should I write”? At that time, I…
OWASP, Ruby on Rails, security
TL;DR This post is about risk sensitive data exposure in your Ruby on Rails application. It will cover unauthorized access and cross site request forgery check (CSRF). Unauthorized access risk…
BBST Test Design, learn testing
TL;DR This blog post is about how OSX update affected text to speech feature that I use as proof reading aid for my blog posts. I will propose a testing…
learn testing, meetup, testival
TL;DR This post is about my Testival #32 meetup learning experience. Sponsor of this meetup was Degordian, digital agency where there is no cure for their curiosity 🙂 They recently…
OWASP, Ruby on Rails, security
TL;DR Mass assignment is security risk where user can create/update data attributes that is not allowed to update. Here is an example. Imagine application that registers your employees working hours….
heuristic, learn testing, oracle
TL;DR This post is example how to apply oracle heuristic to identify is there a problem. Disclaimer: this blog post is not about some fancy new software testing framework. Pure…
TL;DR This blog post is my experience about UI test automation applied in various projects. First disclaimer, this post is not against UI check automation. If not used as a…
TL;DR This post explains how to check your Rails application source code for cross site scripting (XSS) attack. Cross site scripting means that your application accepts html code as user…