This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "OWASP Secure TDD Project"
Lauren Tabak (talk | contribs) m |
Lauren Tabak (talk | contribs) m |
||
Line 15: | Line 15: | ||
− | + | '''About TDD''' | |
− | |||
− | |||
− | |||
TDD is about writing a test which will fail, then writing the minimum amount of code required to make it run, then refactoring the code to make it clean. <br> This is done in cycles, fail -> pass -> refactor, adding a new test for each known requirement for the code.<br> | TDD is about writing a test which will fail, then writing the minimum amount of code required to make it run, then refactoring the code to make it clean. <br> This is done in cycles, fail -> pass -> refactor, adding a new test for each known requirement for the code.<br> | ||
− | TDD is not about testing. TDD uses tests to drive the | + | TDD is not about testing. TDD uses tests to drive the design of your code.<br> |
You can do this with unit tests, functional tests and acceptance tests. Usually, you use all three.<br> | You can do this with unit tests, functional tests and acceptance tests. Usually, you use all three.<br> | ||
− | The tests tell you what to do, what to do next, when you are done. They tell you what the API is going to be, what the design is. | + | The tests tell you what to do, what to do next, when you are done. They tell you what the API is going to be, what the design is. <br> |
The tests permit you to refactor safely, ensuring that the desired behavior continues to work while you adjust your design. The tests also guide you to testable code, promoting smaller methods, shorter parameter lists, and overall much simpler design than other methodologies lead you to. | The tests permit you to refactor safely, ensuring that the desired behavior continues to work while you adjust your design. The tests also guide you to testable code, promoting smaller methods, shorter parameter lists, and overall much simpler design than other methodologies lead you to. | ||
− | Difference between TDD and Unit Tests | + | '''Difference between TDD and Unit Tests''' |
+ | |||
+ | TDD is less about testing, and more about designing the code. Unit tests are then used to set the expectations for the end code.<br> When the end code is written, and passes tests (specifications), you have code that was designed using tests. | ||
+ | |||
Revision as of 15:00, 12 March 2014
OWASP Secure TDD ProjectThe OWASP Secure TDD Project allows organizations to integrate security into the Test Driven Development (TDD) lifecycle. IntroductionAbout TDD TDD is about writing a test which will fail, then writing the minimum amount of code required to make it run, then refactoring the code to make it clean. TDD is not about testing. TDD uses tests to drive the design of your code. You can do this with unit tests, functional tests and acceptance tests. Usually, you use all three. The tests tell you what to do, what to do next, when you are done. They tell you what the API is going to be, what the design is. The tests permit you to refactor safely, ensuring that the desired behavior continues to work while you adjust your design. The tests also guide you to testable code, promoting smaller methods, shorter parameter lists, and overall much simpler design than other methodologies lead you to. Difference between TDD and Unit Tests TDD is less about testing, and more about designing the code. Unit tests are then used to set the expectations for the end code.
How do we solve the problem by implementing STDD?
DescriptionWrite a description that is just a few paragraphs long Explain about the tool - VS add-on, rules engine and extensions. Explain when to use the tool - before development and when knowing the answers to business questions, e.g. user inputs
LicensingThe OWASP Secure TDD Project is free to use. It is licensed under the Apache 2.0 License.
|
What is the OWASP Secure TDD Project?The OWASP Secure TDD Project provides:
PresentationOWASP IL October 2013[1]
Project LeaderNir Valtman
Related Projects
|
Quick Download
News and Events
In PrintThis project can be purchased as a print on demand book from Lulu.com
Classifications |
- Q1
- A1
- Q2
- A2
Volunteers
The OWASP Secure TDD Project is developed by a worldwide team of volunteers. The primary contributors to date have been:
- xxx
- xxx
Others
- xxx
- xxx
As of March 2014, the priorities are:
- xxx
- xxx
- xxx
Involvement in the development and promotion of the OWASP Secure TDD Project is actively encouraged! You do not have to be a security expert in order to contribute. Some of the ways you can help:
- xxx
- xxx
PROJECT INFO What does this OWASP project offer you? |
RELEASE(S) INFO What releases are available for this project? | |||||||||||||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|