Soren Learning

Chapter 4

Test Automation Strategy

testingautomationflakinesstest-datapage-object-model
Listen to this article

A test suite is a product. It has users — the engineers who run it — and its quality determines whether they trust it, ignore it, or actively work around it. A great automation strategy is not about the tool you pick. It is about deciding what to automate, keeping tests honest, and treating the suite as code that deserves as much care as the code it protects.

What to Automate, What to Leave Manual

Automation is expensive. Every automated test is code you have to write, maintain, update when the system changes, and debug when it lies to you. The question is not "can we automate this?" — the answer is usually yes — but "should we?"

A useful way to think about it:

Characteristic of the check Automate Manual
Runs frequently (every commit)
Deterministic (same input → output)
Hard to eyeball correctness
Tests a core business rule
New, exploratory behavior
Aesthetic / UX judgment
Accessibility beyond lint rules
One-off migration validation
Edge cases users might stumble into

Automated tests are for regression prevention — catching things that used to work from breaking. Manual testing is for discovery — finding things you did not think to check. Both are valuable. Neither replaces the other.

A common failure mode is automating everything that can be automated, including exploratory checks. You end up with a bloated suite where half the tests were written to answer a one-time question and will never change their minds. Delete those. Save automation for the things you want to keep asking.

Flakiness: The Silent Killer

A flaky test is one that passes sometimes and fails sometimes without any change to the code or the test. It is the single biggest reason teams lose faith in their test suites, and it is almost always a symptom of a deeper problem.

Why Flakiness Is Worse Than a Failing Test

A test that always fails tells you something is broken. A test that sometimes fails tells you nothing — and quietly trains your team to ignore test failures. Once the culture of "just re-run it" takes hold, the suite is worthless, because a real bug will be indistinguishable from the noise. Flaky tests are a tax on every engineer who touches the suite, forever.

Common Sources of Flakiness

  • Timing assumptions. sleep(1) hoping a background job finishes. The job takes 1.1 seconds on a loaded CI runner. Test flakes. Fix: use explicit waits with timeouts, not fixed sleeps.
  • Test order dependencies. Test A modifies a shared fixture; test B assumes the original state. Works when run alphabetically, fails in random order. Fix: each test creates and tears down its own data.
  • Shared mutable state. A global cache, a module-level variable, a leaked singleton. Fix: isolate tests from each other; reset state in setup, not teardown (teardown doesn't run on crash).
  • Real-time dependencies. datetime.now() in the code under test. Fix: inject a clock, or use a library like freezegun to control time.
  • Network flakiness. An E2E test that hits a real third-party API. When the API blips, your suite fails. Fix: record-and-replay tools (VCR, WireMock), or stub the third party at its boundary.
  • Race conditions in concurrent code. Two threads, no synchronization, test happens to fail 1 in 20 runs. Fix: don't rely on luck; use deterministic scheduling or explicitly test the race.

Retries Are a Smell, Not a Fix

Most test frameworks support retrying failed tests. It is tempting. It is also a trap. A retry says "we don't know why this failed, so we'll just try again." That works — for about six months. Then you have a suite where everything is retried three times, everything takes three times as long, and the real bugs still slip through because they are hidden in the retry noise.

The rule: retries are a tool for the suite owner, not for the test author. If a test is flaky, it is quarantined, filed as a bug, and fixed or deleted. It is not silently retried into green.

The Page Object Model (for UI Tests)

UI tests are famously fragile. A designer moves a button; 200 tests break. The Page Object Model (POM) is the standard defense.

The idea is simple: each page (or screen, or component) in your app gets a corresponding class in your test code. The class has methods for the actions a user can take on that page, and it encapsulates the selectors.

// Without POM — selectors duplicated across tests
test('login flow', async ({ page }) => {
  await page.fill('#email', 'a@b.com');
  await page.fill('#password', 'secret');
  await page.click('button[data-test=login-submit]');
  // ... 20 more tests with the same three lines
});
 
// With POM — selectors in one place
class LoginPage {
  constructor(private page: Page) {}
  async login(email: string, password: string) {
    await this.page.fill('#email', email);
    await this.page.fill('#password', password);
    await this.page.click('button[data-test=login-submit]');
  }
}
 
test('login flow', async ({ page }) => {
  const loginPage = new LoginPage(page);
  await loginPage.login('a@b.com', 'secret');
});

When the designer moves the button, you update one class, not 200 tests.

POM is not magic. Over-applying it — creating page objects for every div — produces bureaucracy. Apply it where it earns its keep: pages or components with meaningful interactions that appear in many tests.

Test Data Management

Where does the data your tests use come from? This is one of the most under-discussed parts of automation, and it is where most suites eventually rot.

Three Common Strategies

1. Shared fixtures. A dataset created once at suite startup, used by all tests. Fast, but fragile — any test that mutates the data breaks others, and it is hard to understand which test needs which fixture.

2. Per-test creation. Each test creates exactly the data it needs. Slower but much more robust. Combined with a database transaction that rolls back after each test, this can be both fast and isolated.

3. Production-like snapshots. A sanitized dump of real data, refreshed periodically. Good for spotting bugs that only occur with real-world data shapes. Dangerous if sanitization misses anything — you don't want real customer data in every developer's laptop.

Most mature teams use a mix: transactional per-test fixtures for unit/integration tests, and a snapshot environment for staging E2E tests.

The Test Data Builder Pattern

Creating test data inline gets tedious when objects have many fields. The test data builder pattern centralizes the defaults and lets each test override only what it cares about.

def make_user(**overrides):
    defaults = {"email": "test@example.com", "role": "member", "active": True, "tier": "free"}
    return User(**{**defaults, **overrides})
 
def test_premium_users_see_premium_features():
    user = make_user(tier="premium")
    # ... test only cares about tier

This keeps tests focused. When you read the test, the only data that matters is the data that is named.

Avoid "Magic" Test Data

A test that uses user_id = 42 because that is the ID that happens to exist in the shared fixture is a time bomb. When the fixture changes or you switch to per-test creation, the test breaks for no discernible reason. Name your data, or create it explicitly in the test. Never rely on IDs or values that exist "somewhere."

Contract Testing for Microservices

When you have 30 services calling each other, E2E testing the whole mesh is impractical. Consumer-driven contract testing is the alternative.

The idea: each consumer of a service writes a contract — a specification of what it expects from the provider. The provider runs those contracts against itself in its own CI pipeline. If the provider accidentally breaks a consumer's expectation, the provider's CI fails — not the consumer's.

Tools like Pact make this concrete:

  1. Consumer service A writes a test that says "when I call /users/123, I expect {id, name, email} in the response."
  2. Pact captures this expectation as a contract file.
  3. Contract is published to a broker.
  4. Provider service B runs its own tests against all its consumers' contracts. If B removes the email field, its build breaks before it can deploy.

Contract testing replaces most service-to-service E2E tests, which are slow and require both services to be deployed together. It is one of the most valuable investments a microservices team can make.

Visual and Snapshot Testing — Use Sparingly

Snapshot testing captures the output of a component or function and compares it to a saved baseline on future runs. If it differs, the test fails, and you either accept the new snapshot or fix the regression.

It is fast to add, which is why it is popular. It is also fast to abuse:

  • Snapshots of giant JSON objects become noise; nobody reads them when they break, they just accept the new one.
  • UI snapshots are brittle to cosmetic changes.
  • They test what the code currently does, not what it should do.

Use snapshots for:

  • Small, stable outputs (a single error message, a compiled CSS class list)
  • Detecting unintended changes in generated output (SQL migrations, serialized payloads)

Avoid snapshots for:

  • Large HTML blobs
  • Anything that changes often and legitimately

Treat Test Code Like Production Code

The single biggest cultural shift in a mature testing practice is treating test code with the same rigor as production code.

  • Review tests in PRs. The test that protects a feature is as important as the feature.
  • Refactor tests when they get messy. Duplicated setup across 50 tests? Extract a helper.
  • Delete tests that have lost their value. A test that has not caught a bug in three years and requires updating on every change is a liability, not an asset.
  • Measure and enforce test speed. If unit tests take longer than a couple of minutes locally, fix the suite before it erodes the habit of running tests.
  • Write better failure messages. assert result == expected tells you nothing when it fails. assert result == expected, f"Expected {expected}, got {result}" — or better, a framework that does this by default — saves debugging time.

The suite is a product. It has users. Treat them well.

What's Next

We have the test suite. Next, we need to run it — reliably, quickly, and continuously. The next chapter covers testing in CI/CD pipelines: parallelization, selective execution, PR gates, and how to make a 10,000-test suite still give you a five-minute answer.

Next: Testing in CI/CD Pipelines — fast feedback, parallelization, and the pipeline as quality gate.