About This Episode:
Have you seen the free course intro to testing machine learning models? Want to know a Python-based performance test tool you can actually run on Google's Kubernetes engine? Is a developer software development lifecycle, the same as a security lifecycle? Find out the answers to these and all other E2E full pipelines. DevOps automation testing, performance testing, and security testing in this episode of Test Guild's new show for the week of April 3rd. So grab a cup of coffee or tea, and let's do this.
Exclusive Sponsor
This episode of the TestGuild News Show is sponsored by the folks at Applitools. Applitools is a next-generation test automation platform powered by Visual AI. Increase quality, accelerate delivery and reduce cost with the world’s most intelligent test automation platform. Seeing is believing, so create your free account now!
Applitools Free Account https://rcl.ink/xroZw
Links to News Mentioned in this Episode
News
Have you seen the free course Intro to testing machine learning models?
Want to know a Python-based performance test tool you can actually run on Google's Kubernetes engine?
Is a developer software development lifecycle, the same as a security lifecycle?
Find out the answers to these and all other E2E full pipelines. DevOps automation testing, performance testing, and security testing in this episode of Test Guild's new show for the week of April 3rd. So grab a cup of coffee or tea, and let's do this.
This episode of the Test Guild news show is sponsored by the awesome folks at Applitools. Applitools is a next-generation test automation platform powered by Visual AI, which increases quality, accelerates delivery, and reduced cost with the world's most intelligent test automation platform. But seeing is believing? So create your free account now by clicking on the link in the comment below.
And while you're there, why not like, leave a comment, and subscribe to get alerted every time I release a new episode?
First up on automation news.
So one of the hottest tools in test automation lately has been Cypress. And if you haven't used Cypress yet or you actually want to learn more about how to use it in the real world, I found a great free course for you by the folks at Cypress on introducing real-world testing with Cypress and Real-World testing with Cypress is actually a four-course curriculum that teaches everything you need to know about testing Modern Web applications with Cypress. And it has 25 lessons with four core courses, the first being testing your first application? The second is testing foundations. The third is Cypress fundamentals, and the fourth is advanced Cypress concepts and actually going to use 30+ examples of real-world tests against real-world apps. So when you're done with this. You actually will have a really good example of how things work against real applications, not just a bogus test app. So you can definitely get up and running really quickly. Definitely check this out. I think this would be a great value to actually learn more about Cypress. So check it out. Let me know what you think.
And if you're into using Selenium, what grid Docker images? I found a special announcement by one of my favorite contributors to Selenium, and that is Diego Molina. And so the announcement is grid Docker images now have official helm pack chart, and if you don't know, Helm is the package manager for Kubernetes And the Selenium Grid Helm chart enables the creation of Selenium, a grid server in Kubernetes. Awesome so thanks Diego for announcing that, and seems like a really cool development for people that want to run Selenium grid on Kubernetes.
And speaking of Docker, actually, Dockers founder launched Dagger, which is a new DevOps platform I just learned about this week as well. And actually, Dagger was launched into public beta last week and announced 20 million in series A round funding. And the goes on to talk about how there are very powerful DevOps tools, but it tends to be very specialized, and as these applications expand in scope, so does the DevOps stack. There's no shortage of specialized tools, but then developers have to glue them all together and the glue is the bottleneck. So the Dagger focuses on replacing the glue with something better. So if you actually click on Dagger, you learn it's a portable dev kit for CI-CD pipelines. It gives you the ability to test and debug your pipelines locally, run the same pipeline on your CI environments without rewrites, and developed in open source by the creators of Docker. So it looks like a really cool solution if you're doing anything with DevOps definitely a tool you should check out as well.
And not to be outdone, Kubernetes gets in the game with another DevOps tool but this is from Garden Io, which is focused on Kubernetes. So Garden Io is a cloud development and testing platform for Kubernetes and container environments, and it's raised 16 million in series A round funding. Garden.io targets developer operations DevOps teams with an end-to-end developer and testing platform that helps build entire systems and spin up production-like environments from scratch. Using a graph-based framework. And the garden.io founder mentioned that it's unique in that it works the same way from a developer's laptop and in Continuous Integration continuous deployments, CI/CD automation, and accelerates both. And if you go to Garden.io, the main headliner is to go cloud-native without the trade-offs. And as I keep mentioning, one of my predictions for 2022 was the rise of Choose to help you with cloud-native type testing. And here's just another example of another platform designed for developers to help you test against cloud-native DevOps solutions. Definitely check out Garden.io And let me know what you think.
And if you're into DevOps, you probably know about Puppet. They just released the results of the 2021 DevOps Survey Salary Report. And one of the biggest takeaways, which is a positive trend, obviously, is that they found that the gender salary gap is decreasing while global salary competition is rising and some other key findings they go into is the European job market remains quite stable despite recent pandemic driven periods of disruption and also companies at a high level of DevOps evolution continue to compensate their employees at the highest level. So take a deep dive into all the findings in this Puppet survey. Definitely. Once again, check that out in the first comment down below.
A question I always get asked is how to learn about A.I. machine learning from a tester's perspective. So that's why this next resource is a must-have for any tester that really wants to dive into learning more about machine learning. So data science, and machine learning teams are always looking for testing professionals to help them with their data, their pipeline models, services, AI ethics, and more as they build many of these AI solutions we've been talking about on this new show. So in this course, Carlos covers real machine learning models and how you can test them and has chapters on things like what is machine learning, building a machine learning model? Where do testers fit into machine learning? I think it's a must-watch course, for sure. Thank you, Carlos, for creating this resource for the testing community,
And I'm not sure if I told you. But next, we're going to be hosting an Applitools event for software engineers and design and test enthusiasts. And this event is an eight-hour event dedicated to promoting excellence in quality engineering and features experts from global brands leading engaging sessions about innovation and cutting edge practices in user experience, design, and testing, which is a hot, hot topic lately. So they have an awesome lineup, as always. So to me, it's a no-brainer. It's free and looks forward to seeing you at the event.
Next up, Performance in Site Reliability news.
And once again, one of the people I always follow on LinkedIn Umesh just dropped another cool link for the anatomy of an incident which SRE folks, you definitely should check on Google's SRE site, so this definitely is a must-read for SREs that use Google's approach for incident management, and so this e-book has a lot of things that it goes over. Some of it is dealing proactively with incidents, how to be prepared, learning the characteristics of incident response, organizational structure, steps to recover, and mitigations after an incident has occurred. Learn how to measure and reduce impacts. How to use post-mortems as tools for prevention and psychological safety. So just another great resource for you and your teams if you are involved at all with Site Reliability Engineering.
So one of my top posts on my website is the top open-source tools for performance testing. One of those tools on my list is, Locust and I was really excited to see this next article on and distributed Locust tested on Google's Kubernetes Engine. It goes over the requirements to get this done. How to create your Kubernetes cluster, and how to deploy Locust to your cluster. How to execute a distributed load test. So definitely a must-read. If you're using Locust, you want to learn more about Locust for performance testing.
Next up, security news.
So we always talk about on the show and probably in your teams how we need to shift everything that we do early and earlier in the software development lifecycle. So the shift-left approach, one of those things is security, which I definitely agree. You need to get developers more involved with security. But does that mean that there's no need for any other security in your team or that you don't need another group to help you with security? Well, this next article goes into detail on how the developer lifecycle is not the same as a security lifecycle and some of the reasons why. And the article just goes into detail on what the differences are. Some of the issues that if we expect developers to catch all security issues and it's just a good read on what the differences are and how in the end, you're definitely going to need to have security operations with alignment with this software development lifecycle. But to stretch beyond it as well in how Appsec has its own lifecycle and it's different from a developer and you need to be aware of that. Even as we try to shift some of these activities to developers, they're not solely responsible for all the security efforts of your development.
And obviously talking about security, Log4j has been one of the biggest news items for the past few months and WhiteSource has actually come up with a free resource to help you find Log4j issues. So White Source launches a free developer tool to detect and remediate log4 shell vulnerabilities. And their Spring4shell Detect is a free CI tool that quickly scans the projects to find vulnerabilities. Spring4shell versions contain the following known CVEs, so definitely a free tool you should check out on GitHub.
For links of everything to value recovered in this news episode. Head on over to the links and the first comment down below, and while you're there, make sure to check out our awesome sponsor Applitools by clicking on the link to create a free account and discover how to take automation testing to the next level by leveraging visual AI.
So that's it for this episode of the Test Guild's new show I'm Joe and My mission is to help you succeed in creating end-to-end full pipeline automation awesomeness. As always test everything and keep the good. Cheers!