Key Takeaways
AI testing workflows are becoming more scenario-driven and context-aware. Testers should shift from exact response validation toward goal-based chatbot evaluation, while also adopting automated red teaming and AI-assisted test generation as review-centered workflows.
Read Today’s Notes
Today’s episode focused on three immediately applicable AI testing techniques.
- The first was automated red teaming for LLM applications using Promptfoo. The transcript emphasized that this lowers the barrier for QA teams to test security vulnerabilities such as prompt injection, private data leakage, and unauthorized actions. A practical starting point is the CLI initialization flow that generates a ready-made security test suite from a single command.
- The second theme was multi-turn chatbot testing. Rather than asserting a single exact reply, the discussion centered on scenario-based evaluation using user goals. Supported examples included checking whether a chatbot completes a task, such as helping a user book a flight, and whether it retains earlier conversational context. This reflects a testing model aligned with non-deterministic AI behavior.
- The third theme was AI-generated test cases from multiple sources. The transcript specifically referenced combining requirement documents, Figma designs, and code to produce context-aware tests. The QA responsibility then shifts from authoring every case manually to reviewing, refining, and approving generated suites.
The framework comparison in the episode stayed use-case driven:
- Promptfoo for general LLM testing and red teaming with YAML-based configuration
- DeepEval for Python-based teams working on RAG and agent evaluation with rich built-in metrics
- Rasa for production-grade end-to-end enterprise chatbot testing
The practical decision heuristic was to first classify the system under test: prompt workflow, complex agent, or full chatbot.
Companion Newsletter
A useful pattern emerging in AI testing is the move from deterministic checking to intent-based evaluation.
For security, automated red teaming makes previously specialized validation work accessible to general QA teams. Instead of manually brainstorming prompt injection or data leakage cases, testers can now start from generated suites and inspect which vulnerability classes are most relevant to their application risk profile. This changes security testing from an occasional expert activity into a repeatable part of everyday QA workflows.
For chatbot testing, the more important question is no longer “did the bot return the expected sentence?” but “did the user successfully complete their task?” This reframes test design around outcomes, memory, and conversation paths. A tester can apply this today by rewriting one scripted chatbot test into a goal-based scenario and checking whether multiple valid conversation paths still satisfy the user objective.
For test design itself, multi-source generation changes where tester value is created. When AI can synthesize tests from requirements, designs, and code together, the highest leverage work becomes reviewing for risk coverage, business intent, and edge cases that automation may miss. A practical exercise is to compare what assertions come from a PRD versus what comes from a design file, then evaluate whether both perspectives are represented in the generated suite.
Research and References
- Promptfoo Red Teaming: Vulnerability Coverage (prompt injection, data leaks, etc.)
https://www.promptfoo.dev/red-teaming/ - DeepEval Multi-Turn Evals
https://www.confident-ai.com/docs/llm-evaluation/code-driven/multi-turn - How To Build Multi-Turn AI Conversations With Rasa
https://rasa.com/blog/multi-turn-conversation - DeepEval Role Adherence Metric
https://www.confident-ai.com/docs/metrics/multi-turn/role-adherence-metric - DeepEval Knowledge Retention Metric
https://www.confident-ai.com/docs/metrics/single-turn/knowledge-retention-metric