SWEN90016 Lecture 13 - Nathan's Vault

# Gemini ## Introduction to Technical Reviews in Software Engineering In the discipline of software engineering, the creation of software is a complex process involving numerous stages, from initial conception to final deployment and maintenance. A critical component of this process is ensuring the quality of the software being produced. Quality assurance (QA) is the systematic set of activities designed to ensure that the software product meets specified requirements and is fit for its intended purpose. One of the most fundamental and effective QA activities is the **technical review**. A technical review is a formal or informal meeting where a software artefact—a piece of work produced during the development process, such as a requirements document, a design diagram, or a segment of code—is examined by a group of individuals other than the person who created it. The primary goal of a technical review is to identify defects, ambiguities, and deviations from standards as early as possible in the development lifecycle. Finding and fixing a defect in the early stages, such as in a design document, is significantly less costly and time-consuming than fixing the same defect after the code has been written, tested, and deployed. It is important to understand that the term "technical review" is an umbrella category that encompasses several distinct methodologies. The specific way a review is conducted can vary significantly between different organizations, teams, and even projects. There is no single, universally mandated procedure that defines all technical reviews. Instead, the field has developed a set of general principles and specific techniques that can be adapted to suit the context. Therefore, when a team decides to conduct a technical review, they are choosing from a palette of options, each with its own structure, roles, and objectives. The following sections will explore several of these specific types of reviews—walkthroughs, inspections, and audits—to build a comprehensive understanding of how these quality assurance processes function in practice. ## The Walkthrough: An Author-Led Exploration A **walkthrough** is a specific type of technical review characterized by the central role of the artefact's author. In a walkthrough, the author of the work product—be it a piece of code, a system design document, or a user manual—leads a group of reviewers through the artefact, explaining it step-by-step. The term "walkthrough" is quite literal; the author is metaphorically walking the review team through the logic, structure, and intent of their work. This process is highly interactive and serves a dual purpose: it is both a mechanism for gathering feedback and a powerful educational tool. The primary function of a walkthrough is to provide the review team with a deeper understanding of the artefact than they could achieve by simply reading it on their own. As the author explains their thought process, design choices, and the rationale behind specific implementations, the reviewers can gain crucial context. This context allows them to ask more insightful questions and provide more relevant feedback on the spot. For instance, a reviewer might spot a potential logical flaw or an overlooked edge case that becomes apparent only through the author's verbal explanation. The secondary, but equally important, function of a walkthrough is education. Because the author is disseminating detailed knowledge about a part of the system, walkthroughs are an excellent way to share expertise and bring other team members up to speed. This is particularly valuable for complex or critical components of a system. For example, if a new software architecture has been proposed, a design walkthrough led by the architect can be an extremely effective way for the entire development team to understand how the various components are intended to interact. This shared understanding is vital for ensuring that the team can collectively build and maintain the system cohesively. Due to this educational aspect, walkthroughs often involve a larger group of people than other, more formal review types, as team members who are not direct reviewers can attend to learn. In the structure of a walkthrough, the author naturally assumes the role of the **moderator**, guiding the discussion and managing the flow of the meeting. The reviewers, in this context, are not typically expected to have performed extensive prior preparation. They may not have even seen the artefact before the meeting begins and are not usually required to work from a predefined checklist of potential defects. The focus is on the dynamic, real-time interaction. During the session, if reviewers identify potential issues, there may be a brief, high-level discussion about possible solutions. For example, if a gap is found in the proposed architecture, the team might quickly brainstorm a way to address it, such as "we could handle that case by adding a new service here." If the issue is minor, it is simply recorded for the author to fix later, and the walkthrough continues. This flexibility makes the walkthrough a versatile and collaborative style of formal technical review. ## The Inspection: A Formal, Checklist-Driven Examination In contrast to the author-led, exploratory nature of a walkthrough, an **inspection** is a much more formal and structured type of technical review. The defining characteristic of an inspection is its reliance on a **checklist**. An inspection is a systematic process where one or more reviewers meticulously examine an artefact against a predefined list of criteria or potential defects. This artefact could be code, a design document, a requirements specification, or any other work product. The goal is to methodically search for non-conformance to established standards and common error types. The process of an inspection is fundamentally different from that of a walkthrough. The main work of an inspection happens *before* the review meeting. Each reviewer is given the artefact and the corresponding checklist well in advance. They are expected to independently and thoroughly "inspect" the artefact, marking any defects they find that correspond to items on the checklist. The subsequent review meeting is not for discovering new defects but rather for **collating** the findings of all the individual reviewers. During this meeting, the team discusses the defects that were found, clarifies any ambiguities, and assesses their severity. The use of a checklist is what gives the inspection its power and rigor. A well-designed checklist ensures that the review is comprehensive and consistent. It directs the reviewers' attention to specific areas where problems are known to occur, based on past experience and established best practices. This systematic approach reduces the chance that important issues will be overlooked and ensures that all reviewers are evaluating the artefact against the same set of standards. At the conclusion of an inspection meeting, the team makes a formal decision about the state of the artefact. There are typically three possible outcomes: 1. **Pass:** The artefact has no defects, or the defects found are so minor that they can be corrected by the author without further oversight. The artefact is approved to move to the next stage of development. 2. **Pass with Revisions:** The artefact has a number of minor defects that need to be fixed. The team is confident that the author can make the necessary corrections, and the artefact is conditionally approved. 3. **Fail / Re-inspect:** The artefact contains major defects. These are problems so significant that they require substantial rework. In this case, the artefact is rejected, and after the author has addressed the issues, it must go through the entire inspection process again to ensure the fixes are correct and have not introduced new problems. ### Code Inspections and Coding Standards A **code inspection** is a specific application of the inspection process where the artefact being reviewed is source code. In this context, the checklist used for the inspection is typically derived from the project's or organization's **coding standard**. A coding standard is a formal set of rules and guidelines for writing code in a particular programming language. It may specify conventions for naming variables and functions, rules for code layout and formatting, best practices for error handling, and a list of prohibited or discouraged language features that are known to be error-prone. The relationship between the coding standard and the inspection checklist is not always a direct one-to-one mapping. A comprehensive coding standard can be a very large document, and it may not be practical or efficient to manually inspect for every single rule in every inspection. Therefore, the inspection checklist is often a curated subset of the coding standard, focusing on the most critical rules or those that cannot be easily checked by automated tools. For example, the checklist might prioritize items related to security vulnerabilities, resource management, and logical correctness over purely stylistic formatting rules (which can often be enforced automatically by code formatters). The goal is to create a checklist that provides confidence in the thoroughness of the inspection without making the process overly burdensome. ### The Anatomy of a Checklist: An Example To illustrate the concept of a checklist for an artefact other than code, consider an inspection of a **formal requirements specification document**. This document is one of the earliest and most critical artefacts in a project, as it defines what the system is supposed to do. A defect in the requirements document can have a cascading and expensive effect on all subsequent development work. A checklist for inspecting such a document might be organized into several categories, each containing specific questions or criteria: * **Organisation and Completeness:** This section checks the overall structure of the document. Does it contain all the necessary sections as defined by the project's template? Are all requirements uniquely identified? Is there a table of contents and an index to help readers navigate the document? * **Correctness:** This is arguably the most critical section. It asks if the requirements are free from errors. Are there any self-contradictory statements (e.g., one requirement states a value must be positive, while another states it must be negative)? Are any of the requirements technically impossible to implement with current technology? Are all facts and assumptions stated in the document accurate? * **Quality Attributes:** This section focuses on non-functional requirements. Does the document specify requirements for performance (e.g., response time), security (e.g., access control), reliability (e.g., mean time between failures), and usability? Are these attributes defined in a way that is clear and, ideally, testable? * **Traceability:** This section examines the connections between requirements. Can each requirement be traced back to a specific business need or stakeholder request? Is there a mechanism to trace each requirement forward into the design, code, and test cases that will eventually implement and verify it? This is crucial for understanding the impact of any proposed changes. * **Special Issues:** This category might cover project-specific concerns, such as adherence to legal or regulatory standards, requirements for internationalization and localization, or compatibility with other systems. By systematically working through such a checklist, the review team can perform a rigorous and comprehensive evaluation of the requirements document, significantly increasing the likelihood of catching critical issues before they derail the project. ## The Audit: An Independent Conformance Review An **audit** is another form of technical review, but it is distinguished by its focus on **conformance** and its high degree of **independence**. An audit is a formal examination of a specific process or product to determine whether it conforms to a defined set of standards, regulations, or procedures. A key feature that differentiates an audit from other reviews like walkthroughs and inspections is that the **author of the work is not involved in the audit process**. This separation is intentional and crucial, as it ensures the objectivity and impartiality of the findings. Audits are often conducted to verify compliance with external standards, such as legal requirements or industry-specific regulations, but they can also be used to check adherence to internal company processes. The scope of an audit can be flexible. It might focus on an entire project, or it might target a specific subset of work products or a particular aspect of the development process. For example, if a company has experienced a series of security breaches, it might commission an audit focused specifically on the security practices and code across all its projects. When an audit focuses on a subset of artefacts, the selection of that subset can be done in several ways: * **Random Sampling:** The auditors might select a random 10% of the code modules or requirements documents. The assumption is that this random sample will be representative of the whole, and any systemic problems present in the entire body of work will likely be visible within the sample. * **Focused or Risk-Based Sampling:** Alternatively, the auditors might intentionally select the items they believe are most likely to contain problems. For instance, they might choose to audit the most complex modules of the system, or those that have historically been the source of the most bugs, as these represent the areas of highest risk. The concept of an audit is perhaps most familiar from the financial world. A **financial audit** involves an independent, external team of accountants examining a company's financial records to verify that they are accurate and comply with established accounting principles. A software audit operates on the exact same principle. It can be performed by an internal quality assurance group that is separate from the development team, or, for maximum independence, by a team that is completely external to the organization. Audits can be categorized into two main types: 1. **Product Audit:** This type of audit examines the final software product to confirm that it meets all specified standards. For example, an audit of an avionics system would verify that the software complies with the stringent DO-178C aviation safety standard. 2. **Process Audit:** This type of audit examines the activities of the development team to confirm that they have followed the specified development process. For example, an audit might check project records to verify that all code changes went through the required code review and testing procedures before being merged into the main codebase. ## The Agile Mindset for Quality Assurance The previous sections described traditional technical review processes. However, the software industry has seen a widespread shift towards **Agile methodologies**. Agile is an iterative and incremental approach to software development that prioritizes flexibility, customer collaboration, and the rapid delivery of valuable software. This shift in development philosophy necessitates a corresponding shift in the approach to quality assurance. Agile QA is not a separate phase at the end of a project; it is an integrated and continuous activity woven into the fabric of the entire development process. The following principles constitute the core of an Agile QA mindset. * **Continuous Feedback:** Agile thrives on fast feedback loops. In the context of QA, this means providing constant feedback to the development team about the quality of their work. This is not limited to feedback from clients but includes peer-to-peer feedback within the team. A culture of open communication is essential, where finding a problem is celebrated as a positive event that helps improve the product, rather than being a cause for blame. * **Deliver Value to the Customer:** The ultimate goal of an Agile project is to deliver value to the customer. QA activities must be aligned with this goal. A process or test that is technically sound but does not contribute to ensuring the software meets a real customer need is considered waste. The focus is on verifying that the software not only works correctly from a technical standpoint but also solves the customer's problem effectively. * **Direct Communication:** The Agile Manifesto values "individuals and interactions over processes and tools." In QA, this translates to a preference for direct, face-to-face (or video) communication over lengthy, formal documents. Instead of writing a detailed bug report and waiting for it to be read, an Agile tester might walk over to the developer's desk and discuss the issue directly, leading to a much faster resolution. * **Courage:** This is a core value in many Agile frameworks. It means having the courage to raise concerns, suggest improvements, and advocate for quality, even when it might be difficult or unpopular. A team member who finds a serious problem should feel empowered to halt a release if necessary, knowing that the team prioritizes quality over arbitrary deadlines. A team lead who gets annoyed when problems are found is undermining this crucial cultural element. * **Simplicity:** Agile principles advocate for "maximizing the amount of work not done." This applies to QA as well. Teams should constantly look for ways to simplify their quality processes, eliminating any activities that are wasteful or do not add value. The goal is to be effective and efficient, not to be bureaucratic. * **Continuous Improvement:** Agile teams are expected to reflect on their processes regularly and look for ways to improve. This is often done through formal events like sprint retrospectives. The QA process itself is subject to this continuous improvement cycle. The team might experiment with new testing tools, refine their review checklists, or change how they collaborate on quality tasks. * **Self-Organization:** Agile teams are typically self-organizing. This means that responsibility for quality is not assigned to a single person or a separate QA department. Instead, quality is the **collective responsibility of the entire team**. Team members collaboratively decide how to best achieve their quality objectives, taking on different roles and activities as needed. The mindset shifts from "it was your job to find that bug" to "it is our collective responsibility to prevent and find bugs." * **A Positive Work Environment:** A team's effectiveness is heavily influenced by its morale and work environment. Creating a pleasant and psychologically safe environment where people feel comfortable raising issues is paramount. When team members are happy and engaged, they produce better work. Addressing sources of frustration and friction within the team is not a distraction from the work; it is an essential part of enabling high-quality work to happen. ### Core Practices in Agile Quality Assurance Building on this mindset, Agile QA employs several key practices to integrate quality into the development flow. * **Shift Left:** This is a foundational concept in modern QA. If you visualize the software development lifecycle as a timeline from left (requirements, design) to right (deployment, maintenance), traditional models placed the bulk of testing activities on the far right, just before release. "Shifting left" means moving quality assurance activities as early as possible in the process. This includes testing during the coding phase, reviewing designs before code is written, and even analyzing requirements for ambiguity and testability. The rationale is simple: the earlier a defect is found, the cheaper and easier it is to fix. * **Automation:** In the fast-paced, iterative world of Agile, manual testing quickly becomes a bottleneck. **Test automation** is therefore critical. By writing scripts that automatically execute tests, teams can get rapid feedback on the state of their software. This is especially important for **regression testing**—the process of re-running existing tests to ensure that new changes have not broken old functionality. Automation allows a comprehensive suite of regression tests to be run in minutes or hours, a task that would take days or weeks to perform manually. While it may seem like an upfront investment to write automated tests, the long-term savings in effort and the increase in quality are substantial. * **The Agile Testing Quadrants:** This is a conceptual model that helps teams think about the different types of testing required in an Agile project. It divides the testing landscape into four quadrants along two axes: one axis distinguishes between tests that are **business-facing** (focused on user value) and **technology-facing** (focused on internal code quality), while the other axis distinguishes between tests that **support the team** during development and tests that **critique the product** after it's built. A common interpretation also maps these to automated vs. manual testing. * **Quadrant 1 (Bottom-Left):** Technology-facing and automated. This quadrant contains **unit tests** and **component tests**. These are written by developers to verify small, isolated pieces of code. They form the foundation of the test automation pyramid. * **Quadrant 2 (Top-Left):** Business-facing and automated. This includes **functional tests** and **story tests**. These tests verify that a feature or user story works as expected from the user's perspective. They are often automated using UI testing frameworks. * **Quadrant 3 (Top-Right):** Business-facing and manual. This is where human intelligence and domain expertise shine. It includes **exploratory testing** (unscripted, ad-hoc testing to discover unexpected bugs), **usability testing**, and **user acceptance testing (UAT)**, where the client or end-users validate the system. It also includes **alpha and beta testing**, where pre-release versions of the software are given to a limited group of external users. * **Quadrant 4 (Bottom-Right):** Technology-facing and often tool-assisted. This quadrant covers **non-functional testing**, such as **performance testing**, **load testing**, and **security testing**. These tests often require specialized tools and expert analysis to interpret the results. ## Specific Agile QA Methodologies Building on the Agile mindset and practices, several specific development methodologies have emerged that place quality and testing at their very core. ### Test-Driven Development (TDD) **Test-Driven Development (TDD)** is a software development practice that inverts the traditional "write code, then test it" sequence. In TDD, the developer writes a unit test *before* they write the production code that the test is intended to validate. The process follows a short, repetitive cycle known as "Red-Green-Refactor": 1. **Red:** The developer writes a small, automated unit test for a new piece of functionality. Since the functionality does not yet exist, this test will fail (hence, "Red"). Writing the test first forces the developer to think clearly about the requirements and desired behavior of the code they are about to write. 2. **Green:** The developer then writes the absolute minimum amount of production code necessary to make the failing test pass (hence, "Green"). The goal is not to write perfect or complete code, but simply to satisfy the test. 3. **Refactor:** With the test now passing, the developer can clean up and improve the structure of the code they just wrote, confident that the passing test will act as a safety net, immediately alerting them if their changes break the functionality. This cycle is governed by three "laws": 1. You may not write any production code until you have written a failing unit test. 2. You may not write more of a unit test than is sufficient to fail (and not compiling is a failure). 3. You may not write more production code than is sufficient to pass the currently failing test. These laws enforce a highly disciplined, incremental approach. The benefits are numerous: it results in a comprehensive suite of regression tests being built as a natural byproduct of development; it encourages better, more modular design because code must be written in a way that is easily testable; and it ensures that the code written is directly tied to a specific, testable requirement. For example, to implement a user login feature using TDD, a developer would first write a test case to verify that a user with correct credentials can log in successfully. This test would fail because the login logic doesn't exist. Then, they would write just enough backend code to authenticate a hardcoded user to make the test pass. Next, they might write another test for a user with incorrect credentials, see it fail, and then add the logic to handle that case. Finally, they would refactor the code to remove the hardcoded values and connect to a real user database, ensuring all tests remain green throughout the process. ### Acceptance Test-Driven Development (ATDD) **Acceptance Test-Driven Development (ATDD)** is a collaborative practice that extends the principles of TDD to the level of user acceptance criteria. While TDD is primarily a developer-focused practice dealing with low-level unit tests, ATDD involves the entire team—developers, testers, and business stakeholders (like the client or product owner)—in defining the criteria for when a feature is considered "done" and acceptable. The ATDD process begins with a conversation where the team and stakeholders collaboratively define specific, measurable acceptance criteria for a user story or feature. These criteria are then translated into automated **acceptance tests**. These tests are written from the perspective of the user and describe the expected behavior of the system in business terms. The development team then writes the production code with the goal of making these acceptance tests pass. Let's revisit the login feature from an ATDD perspective. The team and stakeholders might agree on the following acceptance criteria: * A) A user with valid credentials should be able to log in successfully. * B) A user with invalid credentials should receive a specific error message. * C) The system should prevent brute-force attacks by locking an account after a certain number of failed login attempts. The team would then write automated tests to verify each of these criteria. For example, Test 1 would simulate a successful login. Test 2 would simulate a failed login and check for the correct error message. Test 3 would simulate multiple failed attempts and verify that the account is locked. Only when all these high-level acceptance tests pass is the feature considered complete and acceptable to the business. ATDD ensures that development is driven directly by business requirements and that there is a shared understanding of what "done" means across the entire team. ### Behavior-Driven Development (BDD) **Behavior-Driven Development (BDD)** is a software development approach that evolved from TDD and ATDD. It aims to bridge the communication gap between technical and non-technical team members by describing system behavior in a natural, human-readable language. BDD is a goal-oriented approach that seeks to tie every development activity back to a clear business outcome. A key practice in BDD is applying the **"Five Whys" principle** to each proposed user story. This is a simple but powerful technique for root cause analysis. For each feature, the team repeatedly asks "Why?" to ensure its purpose is clearly understood and directly related to a business goal. For example, for a user story "As a user, I want to log in," the team would ask: "Why do we need users to log in?" "To control their access to system features." "Why do we need to control access?" "Because some features are for paying customers only." "Why do we need to distinguish paying customers?" "Because our business model relies on subscription revenue." This process ensures that the team isn't building features that don't contribute to the overarching business objectives. BDD combines the developer-facing practice of TDD with the business-facing collaboration of ATDD. Its most distinctive feature is the use of a specific, structured syntax for expressing tests, known as **Gherkin**, which uses the keywords **Given-When-Then**: * **Given:** Describes the initial context or precondition. * **When:** Describes the action or event that occurs. * **Then:** Describes the expected outcome or result. For example, a test for a registration feature might be written as: `Given the user is on the registration page` `When they enter an email address that already exists in the system` `Then they should see an error message: "This email address is already registered."` This format creates a "ubiquitous language" that can be easily understood by everyone, from developers to product managers to business analysts. These BDD scenarios serve as living documentation for the system's behavior and can often be hooked into automation frameworks to become executable tests. This ensures that the team is building the right thing, and that it is built correctly, all while maintaining clear communication and alignment with business goals. ## Supporting Practices: Continuous Integration and Delivery To support the rapid, iterative cycles of Agile development, two critical engineering practices have become standard: **Continuous Integration (CI)** and **Continuous Delivery (CD)**. **Continuous Integration (CI)** is a practice where developers frequently merge their code changes into a central, shared repository. Each time a change is committed, an automated process is triggered that builds the entire application and runs a comprehensive suite of automated tests (including the unit tests from TDD and acceptance tests from ATDD/BDD). The primary goal of CI is to detect integration errors as quickly as possible. If the build or any of the tests fail, the build is considered "broken." A broken build is a high-priority event that the team must fix immediately. This practice ensures that the main codebase is always in a working, test-passing state, which provides a stable foundation for further development. **Continuous Delivery (CD)** is the logical extension of CI. If the CI process completes successfully—the application builds and all automated tests pass—the CD process automatically packages the application and deploys it to a staging or pre-production environment. This means that at any given moment, there is a version of the software that has passed all automated checks and is ready to be released to customers at the push of a button. This practice dramatically reduces the risk and overhead of the release process, allowing teams to deliver valuable software to their customers much more frequently and reliably. ## Measuring Quality: Agile QA Metrics To manage and improve quality, it is essential to measure it. Agile teams use a combination of quantitative and qualitative metrics to track their QA efforts. * **Quantitative Metrics:** These are objective, numerical measurements. Examples include: * **Escaped Defects:** The number of bugs found in the deployed software by customers. This is a key indicator of the effectiveness of the internal QA process. * **Defect Density:** The number of defects found per requirement or per thousand lines of code. This can help identify problematic areas of the system. * **Test Coverage:** The percentage of the codebase that is exercised by automated tests. * **Build Failure Rate:** How often the CI build breaks. * **Qualitative Metrics:** These are more subjective but equally important measures of quality. Examples include: * **Customer Satisfaction:** Often measured through surveys or Net Promoter Score (NPS). This is the ultimate measure of whether the software is delivering value. * **Team Morale:** A happy, engaged team is more likely to produce high-quality work. * **Code Quality:** A subjective assessment of the code's readability, maintainability, and design, often gathered during peer reviews. ## The Role of Documentation and Standards in Quality Assurance Even in Agile development, which values "working software over comprehensive documentation," some level of documentation is necessary. Documents are the tangible manifestation of various aspects of the software system, from requirements to design to test plans. To ensure these documents are themselves of high quality, projects often adopt **documentation standards**. These standards define the types of documents to be produced, their structure, format, and content. The advantages of using standards are clear: they provide a consistent framework, promote best practices learned from past experience, and can be essential for meeting regulatory or contractual obligations. For example, software for medical devices or flight control systems must adhere to strict, legally mandated documentation standards. However, standards also have potential drawbacks. They can be time-consuming to implement, may become outdated, and can be perceived as overly bureaucratic and rigid. The key to using standards effectively is **tailoring**. Unless legally obligated to follow a standard in its entirety, a team should critically evaluate the standard and adopt only those parts that are relevant and add value to their specific project. Several well-known models and standards exist to guide organizations in improving their software quality processes: * **Capability Maturity Model Integration (CMMI):** This is a process improvement model that provides a framework for organizations to assess and improve their software development practices. It defines five maturity levels, from Level 1 (Initial), where processes are ad-hoc and chaotic, to Level 5 (Optimizing), where the organization is focused on continuous process improvement. CMMI provides a roadmap for an organization to become more predictable and effective in producing high-quality software. * **Quality Models (e.g., McCall's, ISO/IEC 25010):** These are standards that provide a structured way of thinking about software quality. They break down the abstract concept of "quality" into a hierarchy of specific, measurable attributes. For example, the ISO 25010 standard defines quality characteristics such as **Functional Suitability**, **Performance Efficiency**, **Compatibility**, **Usability**, **Reliability**, **Security**, **Maintainability**, and **Portability**. These models provide a comprehensive checklist of quality attributes that a team should consider and prioritize for their project, ensuring that they have a holistic view of what constitutes a quality product. The evolution of these standards, such as the replacement of the 2001 ISO standard with the 2023 version, reflects the ongoing development of best practices in the field.