64.9 Mutation Testing with mutmut

Right, so you’ve written your tests. They pass. Your coverage report is a beautiful sea of green. You feel pretty good about yourself. And you should. But let me ask you a slightly uncomfortable question: are you sure your tests are actually testing anything meaningful? Or are they just well-trained pets that perform a cute trick when you run pytest, blissfully ignoring any actual logic errors in your code?

This is where mutation testing comes in, and mutmut is the Python library that’ll happily crush your ego so you can build it back up stronger. The concept is deviously simple. A mutation testing tool, a “muter,” will make a small, breaking change to your source code—like changing a + to a -, or turning a True into a False. It then runs your test suite against this “mutated” code. If your tests fail, great! You’ve killed that mutant. It means your tests noticed the backstab. If your tests still pass, uh-oh. That mutant survived. Your tests have a blind spot.

Think of it as a fuzzer for your test suite. It’s the difference between checking your front door is locked and hiring a professional burglar to try every window.

How mutmut Operates

mutmut isn’t magic; it’s a sophisticated code vandal. It parses your source code into an Abstract Syntax Tree (AST)—so it understands the code’s structure, not just its text. Then it goes on a rampage, applying a set of predefined mutation operators. Here’s a taste of its chaotic arsenal:

• Arithmetic Operator Swapping: + becomes -, * becomes /, % becomes /, etc.
• Comparison Operator Swapping: > becomes <, == becomes !=, is becomes is not.
• Boolean Negation: True becomes False, and vice versa.
• Conditional Negation: It can insert a not in conditions or completely remove entire branches.
• Argument Swapping: For functions with multiple arguments, it might swap them.

Let’s see it in action. Imagine we have a pathetically simple function and a corresponding test.

# calculator.py
def add(a, b):
    return a + b

# test_calculator.py
from calculator import add

def test_add():
    assert add(1, 2) == 3
    assert add(0, 0) == 0

Our coverage is 100%. We feel great. Now, let’s unleash mutmut.

pip install mutmut
mutmut run

mutmut will create a mutant. For example, it will change return a + b to return a - b. It then runs pytest on your test suite. What happens? Our test_add function fails spectacularly because 1 - 2 is not 3. mutmut reports: ** mutant killed **. Excellent.

But what if our test was terrible?

# test_calculator_bad.py
from calculator import add

def test_add_bad():
    # Only tests one, very specific case. Useless.
    assert add(1, 1) == 2

mutmut mutates + to -. It runs the test. add(1, 1) is now 1 - 1 = 0, but our test only checks add(1, 1) == 2. The test fails! The mutant is killed! Wait, no… that’s not right. The test is wrong. This is a perfect example of why you need multiple assertions. A better test would have caught that 1 - 1 is 0, not 2. Our bad test is so weak it doesn’t even fail correctly. This is the kind of insanity mutmut exposes.

Interpreting the Results and Improving Tests

After running, mutmut gives you a survival rate. mutmut show will list all the mutants it created and show you the diff of the change that survived. This is the gold.

You’ll see things like:

• Survived Mutant: if condition: -> if True:. This means your tests never check the false path of that condition. Write a test that makes the condition false!
• Survived Mutant: return value -> return None. This means your tests don’t actually assert on the return value; they might just call the function and assume it worked. Add an assertion!
• Survived Mutant: a + b -> a - b. This is the classic. Your test cases aren’t diverse enough. Add tests with negative numbers, zeros, large numbers.

The goal isn’t to get to 100%—that’s often impractical for various reasons, like code that’s simply hard to test or has a lot of debug/logging code. The goal is to use the report to find the dumb gaps in your tests, the ones where you clearly forgot to test a whole branch of logic. Aim for a high 90s mutant kill rate on your core logic.

Configuration and Integration

You can’t just run mutmut on a giant project raw; it’ll take forever and mutate things you don’t care about. You need to configure it.

Create a mutmut.py file at your project root. This is where you tell it what to ignore.

# mutmut.py
def pre_mutation(context):
    # Skip all test files themselves
    if context.filename.endswith('_test.py') or '/test_' in context.filename:
        context.skip = True

    # Skip auto-generated protobuf files or other nonsense
    if 'pb2.py' in context.filename:
        context.skip = True

    # Skip the __init__ boilerplate
    if context.filename.endswith('__init__.py'):
        context.skip = True

    # Only mutate files in our 'src' package, not other installed packages
    if '/site-packages/' in context.filename:
        context.skip = True

You can also run it on a specific subset of files or use pytest options to control the test run. The key is to make its job as efficient as possible so you can run it frequently, ideally in CI on every pull request to prevent test quality from regressing.

It’s a brutal tool, but an honest one. It doesn’t care about your feelings or your green coverage report. It asks one question: “Do your tests actually test the behavior, or just the existence?” After a session with mutmut, you’ll never write a naive test again. You’ll find yourself thinking like an adversary, which is exactly how you write truly robust software.