Did the code lack automated testing?
**Automated testing** is an invaluable practice that can help prevent regressions, help document your code's behavior, and ensure quality as you develop.
They are also a _ton_ of work. Maintaining a robust unit test suite takes discipline and devotion. And the tests are only as good as the developer: the test suite will have the same blind spots as the person who wrote them.
When examining a vulnerability, we asked curators to examine if the code fixed for a vulnerability involved some sort of automated testing. This tag is for when the code **was not** tested.