Skip to content

harhala7/QA_API_Contracts_Project

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
.github/workflows
.github/workflows
 
 
schemas
schemas
 
 
tests
tests
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
pytest.ini
pytest.ini
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

API Tests

What this project demonstrates

  • API testing using pytest and requests
  • Contract testing to validate API schemas and responses
  • Positive and negative test scenarios
  • Basic security hygiene (headers, auth assumptions)
  • Clean, scalable test structure

Tech stack

  • Python
  • Pytest
  • Requests

How to run

pip install -r requirements.txt
pytest

Project structure

tests/
  test_users_happy.py
  contracts/
    test_users_contract.py
  negative/
    test_users_negative.py
schemas/
  user_schema.json

Target API

Public test API used for demonstration purposes:

https://jsonplaceholder.typicode.com
GET /users

Security hygiene checks

This project includes basic API security hygiene tests commonly performed by QA Engineers:

  • HTTPS usage verification
  • Response Content-Type validation (application/json)
  • Detection of sensitive data exposure in API responses (e.g. passwords, tokens)
  • Validation that error responses do not leak implementation details (stack traces, exceptions)

These checks help identify common security and data exposure risks early, without performing penetration testing.

About

API and contract testing framework in Python using pytest and requests, focused on reliability and security hygiene.

Topics

python qa pytest requests api-testing contract-testing automation-testing

Resources

Readme
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages