Genfy
Data

Edge Case Test Generator

Boundary cases that break code: null, undefined, empty strings, numeric limits, weird Unicode, malicious inputs. The tests you should have written before the production bug.

Instant🔒In your browserNo signup
Live
    View as text

    Why edge cases break your code

    The average user is predictable. The real user pastes 'undefined' as text in a field, copies compound emojis that JavaScript counts as 4 characters, sends dates from year 9999, or uploads files named ../../etc/passwd. If your tests only cover the happy path, code explodes in production.

    Edge cases aren't rare: they're inevitable at scale. With 10 users you never see unexpected null. With 10,000 users it happens 3 times a day. With 1M users, every possible invalid input will occur. The problem isn't probability, it's attack surface. Every unvalidated input is a bug waiting to manifest.

    The most expensive bugs come from assumptions. You assume user.name always exists. You assume ID is positive number. You assume string has no special characters. A single unhandled null in critical function crashes the system. Tests with edge cases convert those assumptions into explicit verifications. It's not paranoia, it's accumulated industry experience.

    Edge case categories that matter

    Nullish: null, undefined, NaN. JavaScript has 7+ ways to represent 'nothing'. == null covers null and undefined, but NaN needs Number.isNaN(). Infinity and -Infinity are valid numbers but break normal arithmetic. Test divisions by zero, Math.log(0), Math.sqrt(-1).

    Problematic strings: empty, spaces, line breaks, weird Unicode (zero-width, control chars, compound emojis). An emoji like 👨‍👩‍👧‍👦 is technically 7 code points but visually 1 character. string.length lies. [...string].length also lies with some cases. Use libraries like grapheme-splitter to count correctly.

    Boundary numbers: Number.MAX_SAFE_INTEGER (2^53 - 1) is the last integer JavaScript handles without precision loss. Beyond that you need BigInt. 0.1 + 0.2 !== 0.3 is famous but still breaks financial calculations. Never compare floats with ===. Use tolerance: Math.abs(a - b) < Number.EPSILON. Or better: work with integers (cents instead of dollars).

    How to structure edge case tests

    Don't put 50 edge cases in a single test. If it fails, you don't know which input broke it. One test per edge case, with descriptive name: test('should handle null user id'), test('should reject negative amounts'). When it fails, the test name tells you exactly what's broken.

    Use test.each or describe.each to parametrize: test.each([null, undefined, NaN])('handles %p gracefully', (value) => { ... }). Keeps DRY without sacrificing clarity. Output shows which specific value failed. In Jest, %p pretty-prints the value; in Vitest it's the same.

    Prioritize edge cases by risk. Financial inputs (negative amounts, weird decimals) are critical—they can cost real money. Auth inputs (bypass with admin'--, SQL injection) are security. UI inputs (long strings breaking layout) are UX. Test critical first, cosmetic later. Not all edge cases have equal weight.

    Advanced tools and strategies

    Property-based testing with fast-check: instead of testing specific cases, you define properties that must hold for any input. Example: 'serializing and deserializing JSON must return identical value'. The library generates hundreds of random inputs (including edge cases) and verifies the property. Finds bugs you would never have imagined.

    Fuzzing: tools like jsfuzz or jazzer.js generate massive invalid and mutated inputs to find crashes. Useful for parsers, deserializers, validators. If your code processes external input (APIs, uploads, forms), fuzzing finds vulnerabilities manual tests don't cover.

    Mutation testing with Stryker: modifies your code (changes > to >=, && to ||) and re-runs tests. If tests still pass with mutated code, it means they're not covering those cases. Forces you to write better assertions. It's slow but exposes real coverage gaps. Run it in CI once a week, not on every commit.

    FAQ

    How many edge cases should I test?

    The critical ones for your domain. Financial: negatives, decimals, overflow. Auth: injection, bypass. APIs: null, empty strings, giant payloads.

    Is it better to test edge cases in unit or integration tests?

    Unit tests for individual input validation; integration for how those values propagate through the system.

    How do I find edge cases I don't know about?

    Property-based testing and fuzzing. They generate thousands of inputs, including unexpected combinations that break hidden assumptions.

    Do edge cases replace normal tests?

    No. You need happy path + edge cases. Edge cases validate robustness; happy path validates correct functionality.

    Was this generator useful?

    Other generators you might like

    🪝 Webhook Payload Generator Generate realistic test payloads for JSON webhooks. Simulate GitHub, Stripe, Slack events and more. Perfect for integration testing and development. Data & testing 📡 API Mock Response Generator Generate realistic JSON mock responses for REST endpoints. Speed up frontend development without waiting for backend or paying for synthetic data services. Data & testing 💳 Stripe Test Data Generator Generate valid test data for Stripe API: cards, tokens, webhooks and edge cases. Speed up your development without using real production data. Data & testing 📋 Application Log Generator Generate realistic application logs for testing and development. Error messages, warnings, info and debug with professional format for your tests. Data & testing
    '","'../../etc/passwd'","'DROP TABLE users;--'","'${process.env.SECRET}'","'`rm -rf /`'","'🚀'","'�'","'👨‍👩‍👧‍👦'","'﷽'","'Iñtërnâtiônàlizætiøn'","'A'.repeat(10000)","'\\\\\\\\server\\\\share'","'javascript:void(0)'","'data:text/html,'","'%00'","'%0d%0a'","'..//..//..//etc/passwd'"]},{"id":"numbers","label":"Numbers","items":["0","-0","1","-1","0.1 + 0.2","Number.MAX_VALUE","Number.MIN_VALUE","Number.MAX_SAFE_INTEGER","Number.MIN_SAFE_INTEGER","Number.EPSILON","2**53","2**53 + 1","-2**53","1e308","1e-308","9007199254740992","0.999999999999999","1.0000000000000001","-0.0","Math.PI","Math.E","0x7FFFFFFF","-2147483648","4294967295","0b11111111111111111111111111111111"]},{"id":"dates","label":"Dates","items":["new Date(0)","new Date(-1)","new Date(8640000000000000)","new Date(-8640000000000000)","new Date('Invalid')","new Date(NaN)","new Date('1970-01-01T00:00:00.000Z')","new Date('9999-12-31T23:59:59.999Z')","new Date('0000-01-01T00:00:00.000Z')","new Date('2038-01-19T03:14:07.000Z')","new Date('1900-01-01')","new Date('2100-12-31')","new Date('2000-02-29')","new Date('2001-02-29')","new Date(Date.now() + 1e15)"]},{"id":"arrays","label":"Arrays","items":["[]","[null]","[undefined]","[,,,]","Array(1000000)","[...Array(100).keys()]","[[[[[[]]]]]]","[1, '2', null, undefined, {}, []]","new Array(-1)","[NaN, Infinity, -Infinity]","Object.assign([], {length: 2**32})","[].concat(undefined)","Array.from({length: 5})","[...'💩']","new Uint8Array(0)"]},{"id":"objects","label":"Objects","items":["{}","{a: undefined}","{[Symbol()]: 'value'}","{__proto__: null}","Object.create(null)","new Proxy({}, {get: () => {}})","{get prop() { throw new Error() }}","{constructor: {name: 'Array'}}","{length: 0, [0]: 'fake array'}","Object.freeze({})","Object.seal({})","{toString: () => { throw new Error() }}","{valueOf: () => NaN}","JSON.parse('{}')","JSON.parse('null')","{a: {b: {c: {d: {e: 'deep'}}}}}","new WeakMap([[{}, 'value']])","new Error('test')","new Date('Invalid')","/(?:)/"]}]