Any tips on safely using AI for test generation? How do you avoid potential security or quality risks?

Software DevelopmentQuality, Testing and Security
694 viewscircle icon1 Upvotecircle icon5 Comments
Sort by:
Senior Director - Solution Architecture in Softwarea month ago

AI is used for test case generation. Prompts written are thoroughly reviewed for "prompt injection" or "jailbreak" intention. After that test case review is done by humans to ensure we avoid potential risks.

Lightbulb on1
Director of Operationsa month ago

As I say, I use my I (eyes) and my I (Intelligence) before and after the AI!

The Risk Management will need:
1. Do not fully rely on AI - thoroughly review and refine AI's output. In this case, I will have to define full scenario (starting from Business Requirements to Design to the Final Product to the AI agent) - basically, my full knowledge dump to the AI agent.
2. Use multiple AI agents independently and make the best out of them as input to your thorough reviews.
3. Best is, to share 1 with the AI Agent along with your Test Plan, Test Cases and seek its views/ inputs/ refinements.

Hope this helps.

Senior Data Scientist in Services (non-Government)a month ago

As a data scientist, I'd say, trying to address (statistical) design of experiment approaches firstly (before AI based test generation) and then comparing the variety of testcases of both attempts including the probabilities of detecting failures to have at least one benchmark by the DoE cases.

Director of Engineeringa month ago

Whether its Code Generation or test generation, gates need to be built in for overview. For AI generated test , the tester should be reviewing the test and maybe even editing it for perfect use.
Also we have a mandatory code review for all code or tests so we now have 2 pairs of eyes.

CIO in Travel and Hospitalitya month ago

Follow are a some initial thoughts:

-Operationalize governance mechanisms to address assurance concerns, including quality and security.
-Ensure that all initial AI lifecycle phases (inception, elaboration, construction, etc.) involve human oversight and accountability for outcomes, regardless of the tools employed.

Lightbulb on1

Content you might like

Which software development approaches or methodologies are your developers following? Select all that apply.

Agile50%

BDD24%

CI/CD47%

DevOps53%

Lean16%

Sequential (Waterfall)18%

TDD/ATDD5%

Other2%

Don't know2%

View Results

I am interested in people who have tried generative AI coding projects.  In your experience, are there project attributes that make generative AI coding capabilities a "good fit"?  Are there project attributes that are likely indicators that generative AI will not result in something useful?  I would think complexity of requirements is a big factor.  If the complexity of the project or its requirements is low - I assume genAI coding can get you within the ballpark.  For instance, logic stores: if your project has critical business logic spread out all over the place and not centralized I think that generative AI would not be able to make sufficient sense of that.

What are the key benefits of automated functional testing for your organization? Choose the 3 most important.

Faster feedback from testing35%

Shortened time to market36%

Earlier identification of defects40%

Improved application quality36%

Better end-user experience/user satisfaction27%

Increased tester productivity33%

Increased tester job satisfaction10%

Cost savings18%

Better use of testing resources13%

More reproducible tests7%

Higher test coverage5%

View Results

Software Engineers often get pegged as the team that says “no” or “that’s impossible”. How do you maintain a strong and trusting relationship with the product team while continuing to reset their expectations?

Read More Comments

Any tips for establishing a security champions program for the software team? If you’ve done this, did you run into any internal pushback or skepticism?

Read More Comments