Security News
GitHub Removes Malicious Pull Requests Targeting Open Source Repositories
GitHub removed 27 malicious pull requests attempting to inject harmful code across multiple open source repositories, in another round of low-effort attacks.
Make testing 10x times faster by running only the tests affected by changed code. Seamlessly integrates with Mocha (more frameworks coming soon).
Selective test execution means running just the relevant subset of your tests instead of all of them. For example, if you have 200 tests, and 10 of them are related to some feature, then if you make a change to this feature you should run only the 10 tests and not the whole 200. test-creep automatically chooses the relevant tests based on istanbul code coverage reports. All this is done for you behind the scenes and you can work normally with just Mocha.
For more information visit my blog or my twitter.
You should use Mocha in your project to run tests. You should use git as a source control.
You need to have Mocha installed locally and run it locally rather than globally:
$> npm install mocha
$> ./node_moduels/mocha/bin/mocha ./tests
$> npm install test-creep
$> ./node_modules/mocha/bin/mocha ./node_modules/test-creep/first.js ./tests
first.js is bundled with test-creep and monkey patchs mocha with the required instrumentation (via istanbul).
In addition, it is recommended to add .testdeps_.json to .gitignore (more on this file below).
The first time you execute the command all tests run. first.js monkey patches mocha with istanbul code coverage and tracks the coverage per test (rather than per the whole process). Based on this information test-creep creates a test dependency file in the root of your project (.testdeps_.json). The file specifies for each test which files it uses:
{
"should alert when dividing by zero": [
"tests/calc.js",
"lib/calc.js",
"lib/exceptions.js",
],
"should multiply with negative numbers": [
"tests/negative.js",
"lib/calc.js",
],
}
Next time you run the tests (assuming you add first.js to the command) test-creep runs 'git status' to see which files were added/deleted/modified since last commit. Then test-creep searches the dependency file to see which tesst may be affected and instructs mocha to only run these tests. In the example above, if you have uncommited changes only to lib/exceptions.js, then only the first test will be executed.
At any moment you can run mocha without the 'first.js' parameter in which case all tests and not just relevant ones will run.
test-creep sweet spot is in long running test suites, where it can save many seconds or minutes each time you run tests. If you have a test suite that runs super fast (< 2 seconds) then test-creep will probably add more overhead than help. However whenever tests run for more than that test-creep can save you time.
Dependency between test and code is captured at file and not function granularity. So sometimes test-creep can run more tests than actually requiered (though there is no harm in that).
test-creep cannot detect changes in global contexts. For example, if you have a one time global initialization of a dictionary, and some tests use this dictionary, then test-creep will not mark these tests as dirty if there is a change in the initialization code.
Tests should have unique names even if they reside in different files/suites.
At any moment you can run mocha without the 'first.js' parameter in which case mocha runs all tests as normal. You can also delete .testdeps_.json if you wish test-creep to reinitialize its cache for any reason.
For more information visit my blog or my twitter.
FAQs
Selective test execution
We found that test-creep demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
GitHub removed 27 malicious pull requests attempting to inject harmful code across multiple open source repositories, in another round of low-effort attacks.
Security News
RubyGems.org has added a new "maintainer" role that allows for publishing new versions of gems. This new permission type is aimed at improving security for gem owners and the service overall.
Security News
Node.js will be enforcing stricter semver-major PR policies a month before major releases to enhance stability and ensure reliable release candidates.