About This Episode:
Hey, so get ready for some big test automation acquisition news.
Also, do you know the difference between testing and checking? And if so, why you may be doing yourself more harm than good.
Also, want to know what the decade-old security risk is and the number one spot, on the updated OWASP top 10 list?
Find out the answers to these and other full-stack automation, testing, performance, testing, site reliability, and engineering security testing, DevOps-related news items, in this edition of the TestGuild news show.
So grab your favorite cup of coffee or tea, and let's do this.
Exclusive Sponsor
This episode of the TestGuild News Show is sponsored by the folks at Applitools. Applitools is a next-generation test automation platform powered by Visual AI. Increase quality, accelerate delivery, and reduce cost with the world’s most intelligent test automation platform. Seeing is believing, so create your free account now!
Links to News Mentioned in this Episode
*** Applitools free account:Â https://rcl.ink/xroZw ***
1.https://www.perforce.com/press-releases/perforce-to-acquire-blazemeter-from-broadcom
1.A https://twitter.com/ek121268/status/1443580189858959372?s=20
2.https://jhall.io/archive/2021/10/03/a-simple-solution-to-the-confusion-between-testing-and-checking/
2A.https://www.linkedin.com/posts/tinydevops_a-simple-solution-to-the-confusion-between-activity-6850339353399455744-yokW
3.https://www.albawaba.com/business/pr/red-hat-ansible-automation-platform-2-drives-cloud-native-automation-and-helps
4https://www.linkedin.com/posts/activity-6849022259638755328-9eBG
4A. https://testguild.com/call-for-speakers/
5.https://fudzilla.com/news/53626-software-reliability-a-key-problem-during-2021
6.https://www.techrepublic.com/article/owasp-updates-top-10-list-with-decades-old-security-risk-in-1-spot/
7.https://www.linkedin.com/posts/scottmooreconsulting_amazon-debuts-fully-managed-prometheus-based-activity-6849405801019256832-C_aw
8.https://siliconangle.com/2021/09/29/amazon-debuts-fully-managed-prometheus-based-container-monitoring-service/
News
Hey, so get ready for some big test automation acquisition news.
Also, do you know the difference between testing and checking? And if so, why you may be doing yourself more harm than good.
Also, want to know what the decade-old security risk is and the number one spot, on the updated OWASP top 10 list?
Find out the answers to these and other full-stack automation, testing, performance, testing, site reliability, and engineering security testing, DevOps-related news items, in this edition of the TestGuild news show.
So grab your favorite cup of coffee or tea, and let's do this.
Before we, jump into if this episode has helped you in any way, why not like and comment down below to help support the show? It really helps the algorithm get out there the news to help spread automation awesomeness to the masses.
And speaking of supporting the show, this episode of the TestGuild news show is sponsored by the awesome folks at Applitools Applitools, the next-generation test automation platform powered by visual A.I. that helps increase quality, accelerate delivery and reduce costs with the world's most intelligent test automation platform. But I know you'd know that seeing is believing. So check it out yourself by definitely clicking on the link below to create your free account now.
First up, automation news All right, so let's kick it off. What I took it's one of the biggest news items of this week and that is perforce has acquired or is about to acquire BlazeMeters continuous testing platform from Broadcom. Now, as you know, I am an acquisition junkie and I've been predicting test companies acquiring other test companies for a while now. These companies keep getting bigger and bigger. And the reason why, I think, is that these companies want to have an end-end solution in place. I first heard about this when it came up on my Twitter feed from my friend Eran Kinsbruner. If you're not following Eran I definitely recommend following him. He is a mobile testing automation expert, so definitely someone that you should follow as well. And in the news release to talk about how this acquisition actually builds on Perforce's growing application quality portfolio. If you don't know, BlazeMeter is a solution for load and performance testing that includes additional unified functionality, including API testing and monitoring, and a single unified platform that allows organizations to help speed digital transformations by shifting left and right. So I think this acquisition is right on the trend of what we've all been seeing as how companies are trying to shift left and right and to do that you need a solution to help you all along the way. And as I've been saying, I'm into automation, not just UI automation, but full stack automation, which includes performance testing and you're starting to see a lot of these companies starting to acquire performance testing solutions. And so you saw this a few months ago with Tricentis acquiring Neotyst. And now you see Perfecto or perforce acquiring Blazemeter. So look for other large companies to start acquiring performance solutions as well. We also saw, like a week ago or a few weeks ago, Grafana acquiring k6. So that's just a key indicator to me. That performance testing really is now a critical piece of the full automation pipeline that you as a tester need to know and get involved with because it's definitely coming down. If all these solutions are starting to cooperate, it and their solutions or their portfolio probably mean your company is going to start thinking that you're going to have to get involved with it as well. So just something good to know and keep your pulse on to get ready for when this shift actually occurs for you.
So, I don't know, if it's me, I didn't know how to explain this correctly or in a way that would probably be persuasive. So I found this awesome news article I took. It actually breaks it down really well in a way, I wish I was able to write myself. So this recently popped into my news stream. It is an article by Jonathan Hall on how the distinction made between testing and checking is valuable, but the terminology is not, and I completely agree. This really caught my attention. If you actually click on the article, Jonathan elaborates more in this article. I'll have a link to this in the comments down below. But one point that really caught my attention was the normal definitions of test and checking don't have the distinction that as testers, we make and we expect developers, project managers or CEOs to adopt this new terminology is a lost cause. I'm not putting down the concept. I'm putting down that they were Jonathan actually lays down better than when I'm explaining. So definitely check it out in the links down below.
This next article is really interesting on automating infrastructure and how it's an underlook aspect of the software development lifecycle that a lot of people miss out on. Now, developers can become automators by helping automate different parts of the infrastructure they need to develop software, so this week. RedHat actually introduced Ansible Automation platform 2 as the company's new standard for hybrid cloud automation. And every time I see companies investing in tools or technology to help with this is just another indicator is something we should be paying attention to. And he gives us some points on how cloud automation for cloud is a thing. The shift left self-contained automation for developers and IT operations, and it's a great quote here by Joe Fitzgerald, the vice president, general manager, at Ansible that says we are seeing many organizations shift their automation priorities away from cost savings and towards agility and security and just another cool piece of technology you should be aware of to help you create better, quicker, faster software in your software delivery pipeline.
Also, my call for speakers for Automation Guild 2022 is still open, so if you haven't submitted your idea for a paper, definitely do it now. So to apply as a speaker, all you need to do is go to GuildSpeaker.com. I'll have a link to it in the comments down below.
So the reason why I bring this up is this next news article can actually help you learn how to become a better speaker. And this is by Tristan Lombard. So just another person who should definitely be following. If you're not following Tristan, he really helps the testing community. So someone to keep your eye on always for any updates. And this latest is a video session he created for QA touch on what story or talk can you deliver? There needs to be told. So this actually covers. If you ever wanted to deliver a quality talk, you definitely should check out his video on his advice for creating a quality talk.
This next article came my way via Scott Moore. As I mentioned in a previous episode, you definitely should follow Scott Moore for all things performance testing related, performance engineering related. And so he shared a post from someone else on… So AWS has a new Prometheus-based container monitoring service that was shared by Patrick Wolfe. So the article just announced a new cloud service to help customers keep a better eye on the performance of their Kubernetes managed container software deployments. And the reason why I bring it up is, just like Patrick says, is that this is a sign that Prometheus has become mainstream for observability. So it's a term you've been hearing a lot on this show. And so Kubernetes is a technology we've been hearing a lot about, and you see companies now investing in certain technologies to help monitor these types of technologies as well. So thank you, Scott and Patrick, for contributing this news article to this episode.
So this next article talks about how software reliability has become a key problem during 2021, and it goes into detail on why site reliability engineering is so important and how it helps your team's performance when you get it correctly. And if you don't get it done correctly, how it actually impacts negatively the performance of your team. It's definitely a good article so check out down below in the comments.
Last up security news.
So this next article talks about how new research has shown that scanning automatically confirms 94 percent of direct impact vulnerabilities, with 99.98% accuracies. And this article talks about how a global investor and application security release results of an extensive analysis of six years worth of real-world vulnerability data. And within the research, they found that net sparks proof-based scanning technology automatically confirmed 94 percent of direct impact vulnerabilities, with the confirmation axiom ninety-nine point ninety. So, in other words, only zero point zero two percent were later found to be false positives. So it goes over some trends and why this is important. How security teams suffer from alert overload. How false positives and scan results cost time and money. And how manual vulnerabilities, verification delays, remediation and distracts from valuable security work. So definitely check out more of the study done below. As I said, it's over six years, so definitely good. Data was collected in this research.
This next article is by TechRepublic – how OWASP has updated their top 10 lists, with a decade-old risk now in the number one spot. And so this risk was first identified in 1996, and OWASP just published its software security problem to the first spot in the 2021 update of its top 10 lists. And if you go to the OWASP, top 10 list it goes into detail on what the top 10 security risks are, how they match up to 2017, how they've been updated for 2021, and how the number one is 94 percent of applications tested for some of the broken access controls. What's really cool, about OWASP is if you don't know. Not only does it describe the risk, but it goes into detail on factors that cause it, overviews. descriptions, how to prevent, examples. References So another must-know resource you definitely should know. And a development that you should know about as well.
So before we go, make sure to get your free Applitools account to discover how AI-based visual validation testing can help you and your teams in your testing efforts. Click on the link below to get your free account now.
So that's it for this episode of the TestGuild new show. I'm Joe and my mission is to help you succeed with creating end-end full stack automation awesomeness. As always, test everything and keep the good. Cheers!.
