Blog
QA testing insights, AI agent tips, and skill development guides
All Articles
Page 6 of 27
Testing LLM Function-Call Argument Validation
Test LLM function-call argument validation with JSON Schema and Ajv, covering missing, invalid, extra, coerced, malicious, and semantically unsafe inputs.
Testing LLM JSON Schema Enum Compliance
Test LLM JSON Schema enum compliance with strict validation, adversarial prompts, normalization boundaries, reproducible sampling, and failure diagnostics.
Testing LLM Streaming Chunk Order
Test LLM streaming chunk order by parsing real SSE boundaries, tracking sequence metadata, detecting gaps and duplicates, and validating safe replay and completion.
Testing LLM-Judge Rubric Score Consistency
Test LLM-judge rubric score consistency by measuring repeated-score variance, ordinal agreement, drift, and unstable rubric boundaries before release.
Testing Metadata-Filtered Retrieval in RAG
Test RAG metadata-filtered retrieval for tenant, date, and document-type boundaries with adversarial fixtures, SQL checks, and recall diagnostics.
Testing Modal Focus-Trap Accessibility
Test modal focus-trap accessibility with Playwright by verifying initial focus, Tab cycling, Escape behavior, background isolation, and focus restoration.
Testing Multilingual RAG Retrieval Quality
Test multilingual RAG retrieval quality with language-pair recall, ranking, grounding, translation variants, and production-focused failure analysis.
Testing Multipart File-Upload Size Limits
Test multipart file-upload size limits at exact boundaries, including MIME overhead, deceptive filenames, truncated bodies, cleanup, and proxy behavior.
Testing OAuth 2.0 Refresh-Token Rotation
Test OAuth 2.0 refresh-token rotation for one-time use, concurrent reuse detection, expiration, token-family revocation, and secure client recovery paths.
Testing Offset Pagination for Duplicate Records
Test offset pagination for duplicate records under concurrent inserts and deletes, with deterministic ordering, traversal oracles, and snapshot options.
Testing Optimistic Locking with a Version Column
Test optimistic locking with a version column by racing stale updates, checking atomic SQL predicates, and proving conflicts preserve committed data.
Testing Out-of-Order Webhook Delivery
Test out-of-order webhook delivery with deterministic permutations, idempotent storage, version guards, reconciliation, and assertions on final business state.
Testing PII Redaction in Streaming LLM Output
Test PII redaction in streaming LLM output across chunk boundaries, Unicode text, partial identifiers, buffering, flush behavior, and downstream event delivery.
Testing Position Bias in an LLM Judge
Test position bias in an LLM judge with balanced AB/BA swaps, discordance analysis, exact significance tests, tie handling, and production calibration controls.
Testing PostgreSQL Row-Level Security Policies
Test PostgreSQL row-level security policies with real tenant roles, USING and WITH CHECK cases, policy combinations, bypass detection, and transaction isolation.
Testing Prompt-Version Rollback Safety
Test prompt-version rollback safety across immutable artifacts, output schemas, tool calls, caches, and live traffic so restoring an old prompt stays reversible.
Testing Push-Notification Deep Links
Test push-notification deep links across foreground, background, terminated, authenticated, expired, and invalid routes with reliable mobile test evidence.
Testing RAG Chunk-Overlap Regressions
Test RAG chunk-overlap regressions by freezing documents, measuring boundary retrieval, tracking duplication, and comparing answer evidence before rollout.
Testing RAG Citation-to-Source Alignment
Test RAG citation-to-source alignment with claim-level evidence maps, deterministic validators, calibrated entailment grading, and actionable regression metrics.
Testing RAG Context Precision at Different Top-K Values
Test RAG context precision across top-k values, expose ranking noise, compare answer quality and cost, and select retrieval depth from repeatable evidence.
Testing RAG Faithfulness with Ragas
Test RAG faithfulness with the current Ragas API, calibrate groundedness thresholds, diagnose unsupported claims, and build reliable evaluation gates.
Testing RAG No-Answer and Abstention Behavior
Test RAG no-answer and abstention behavior with evidence-controlled datasets, calibrated thresholds, citation checks, and metrics that expose unsupported answers.
Testing RAG Reranker Regressions
Test RAG reranker regressions with frozen candidate sets, graded relevance, ranking metrics, slice thresholds, pair diagnostics, and safe rollout gates.
Testing Regional Cookie-Consent Behavior
Test regional cookie-consent behavior for geo defaults, prior consent, script blocking, withdrawal, expiry, and cross-subdomain persistence.
Testing Retry-After Headers and Client Backoff
Test Retry-After headers and client backoff across seconds, HTTP dates, jitter, caps, malformed values, and deterministic timing without slowing the suite.
Testing RFC 9457 Problem Details Error Responses
Test RFC 9457 Problem Details responses with precise media-type, status, type URI, instance, extension, schema, localization, and leakage assertions.
Testing RTL Layouts with Visual Regression
Test RTL layouts with visual regression by controlling fonts and direction, checking logical alignment, mirrored icons, overflow, mixed text, and baselines.
Testing S3 Event Notifications Locally
Test S3 event notifications locally with LocalStack, SQS, AWS SDK v3, and Testcontainers while asserting filters, duplicate tolerance, and payload shape.
Testing Self-Preference Bias in an LLM Judge
Test self-preference bias in an LLM judge with blinded model-family comparisons, quality controls, position swaps, and actionable release thresholds.
Testing Shopify Webhook HMAC Validation
Test Shopify webhook HMAC validation with byte-exact raw bodies, constant-time comparison, invalid signatures, duplicate IDs, and secret rotation cases.
Testing Signed-URL Expiration in an API
Learn signed-URL expiration API testing with controlled clocks, boundary assertions, replay checks, and signature tampering that expose real authorization flaws.
Testing Slack Events API Retries
Test Slack Events API retries with signed duplicate deliveries, retry headers, fast acknowledgements, and idempotent processing that survives failures.
Testing Soft-Delete Query Filters
Test soft-delete query filters across reads, joins, uniqueness, restore, pagination, and concurrent updates so deleted records never leak unexpectedly.
Testing Stripe Subscription Proration Webhooks
Test Stripe subscription proration webhooks for upgrades, downgrades, invoice timing, payment failures, duplicate delivery, and out-of-order events.
Testing Stripe Webhooks Locally with Signature Verification
Test Stripe webhooks locally with real signature verification, CLI forwarding, raw-body handling, idempotency checks, event triggers, and replay defenses.
Testing Structured-Output Repair and Fallback Logic
Test structured-output repair and fallback logic across JSON parse errors, schema failures, bounded retries, safe defaults, and terminal error reporting.
Testing the OAuth 2.0 PKCE Token Exchange
Test OAuth 2.0 PKCE verifier, challenge, authorization-code, replay, and token endpoint behavior with protocol-level assertions and runnable code.
Testing Timezone-Sensitive Database Queries
Test timezone-sensitive database queries at DST gaps, repeated hours, UTC boundaries, and session-zone changes with deterministic PostgreSQL cases.
Testing TOTP Two-Factor Authentication with Clock Skew
Test TOTP two-factor authentication under clock skew with exact time-step boundaries, replay prevention, narrow windows, throttling, and OTPAuth examples.
Testing Toxic LLM Output with Multilingual Prompts
Test toxic LLM output with multilingual prompts using native-speaker datasets, obfuscation cases, calibrated judges, severity labels, and release gates.
Testing Twilio Webhook Signature Validation
Test Twilio webhook signature validation across exact URLs, form parameters, proxies, and tampered payloads so forged callbacks are rejected safely.
Testing Vector-Search Recall at K
Test vector-search recall at K with defensible relevance labels, exact metric code, filtered-query diagnostics, and release gates tied to retrieval risk.
Testing Webhook Replay-Attack Protection
Test webhook replay-attack protection with raw-body signatures, timestamp windows, duplicate-event storage, concurrency checks, and safe key rotation.
Testing WebSocket Presence After Reconnection
Test WebSocket presence after reconnection with deterministic session models, heartbeat control, stale-socket races, and multi-device state assertions.
Testing Whether an Agent Stops After Goal Completion
Test whether an AI agent stops after goal completion using terminal-state oracles, tool-call traps, trajectory checks, and bounded execution budgets.
Upload Multiple In-Memory Files with Playwright
Upload multiple in-memory files with Playwright using real FilePayload buffers, precise assertions, and no temporary fixtures left on disk in CI.
Upload Test Artifacts Only on CI Failure
Upload test artifacts only on CI failure to cut routine storage use while preserving logs, screenshots, traces, and reports when engineers need evidence.
Use Jest Fake Timers with runOnlyPendingTimers()
Use Jest fake timers and runOnlyPendingTimers() to test recursive schedulers one generation at a time without infinite-loop failures or real-time delays.
Use Mock Service Worker in Vitest Browser Mode
Use Mock Service Worker in Vitest Browser Mode to test real fetch behavior, per-test API scenarios, failures, and request contracts in a browser.
Use Playwright bypassCSP to Test Third-Party Widgets
Use Playwright bypassCSP safely to test third-party widgets, isolate injection behavior, and distinguish CSP blocking from genuine integration failures.