Schedule

Remember when software architecture seemed like just boxes and arrows on a whiteboard? In this talk, we'll challenge that view and explore what really matters in modern software design. You will discover how successful architects think beyond tech specs, seeing architecture as a living story shaped by people, teams, and evolving needs. You'll gain fresh perspectives on building systems that last and learn why the best architectures are more about enabling people than enforcing technical decisions.

Anna performs a deep dive into the anatomy of a regression that affected Node.js users in development and production in the past year, and analyzes how it gives us insight into how JS engines work under the hood and how Node.js itself is currently being developed.

The creator of Hono talks about Hono. Hono is a web framework using only Web Standard APIs and runs on Cloudflare Workers, Deno, and Bun. Now, in addition to those runtimes, it also runs on Node.js by using a Node.js adapter. However, there were some difficulties along the way.

After many years and many projects using web technologies, Phil is becoming increasingly excited about changing up some of the tools that are his usual security blanket. After repeatedly campaigning for large clients to embrace tools from the NodeJS ecosystem while it was maturing, why would he consider disrupting that?In this talk, Phil will speedrun features and utilities of Deno that have him excited, and share information about plans to help the JavaScript and TypeScript ecosystems continue to thrive. We'll look at things like package management and publishing, testing and tooling, writing and hosting serverless functions, and more. All while exposing how and why Phil was once daunted by embracing TypeScript, but is now finding new comfort in the emerging tools on offer.

Have you ever struggled to track performance issues in your Node.js apps? Me too—it can feel like chasing ghosts in your code! That’s why I’m excited to share how AI can make this so much easier. In this talk, I’ll show you how AI can simplify performance debugging by analyzing CPU and memory usage, finding bottlenecks, and even pointing out potential memory leaks.

Ever faced a situation where you desperately needed a queue, but traditional options were off the table? My team ran into this exact problem. After a lot of experimentation, we discovered a unique solution using Redis and BullMQ. This talk will share our journey – from the frustration of limited queueing options to building a highly scalable, lightning-fast system.

Large, legacy codebases often suffer from tangled dependencies, lack of modular boundaries, and monolithic "barrel" files that bundle together many modules. This makes the codebase difficult to understand, modify, and scale. In this talk, we'll explore strategies for "untangling the barrel" and simplifying a complex codebase to prepare it for migration to a monorepo architecture.We'll cover techniques for:- Analyzing your code for cyclic dependencies- Tools to help refactoring the code- Establishing coding guidelines and automation to control codebase complexity going forward

Join us on a fun journey through the world of Event-Driven Architectures! We’ll explore Node.js’s event-driven nature, the Event Loop, EventEmitter, Pub/Sub, and scaling with Kafka. Watch a live demo of an Emoji Reaction widget in action, and learn how events drive scalable, resilient systems. Don’t panic, it’s just events, and they’re easier than you think!

Imagine the convenience of executing TypeScript files directly with Node.js. Just a few years ago, this concept seemed like a distant dream. Today, it stands as an exciting experimental feature. This narrative dives into the journey of transforming this dream into a reality.

Discover how WASM at the edge pushes beyond cloud limits, enabling low-latency, secure, and distributed computing. In this talk, we’ll explore Wasm patterns for edge deployments, covering performance, security, and real-world use cases that blend cloud and edge seamlessly.

Unlock the potential of AI in Node.js applications through practical, real-world implementations. This session demonstrates how to integrate both open-source and closed AI models to build intelligent features like semantic search and autonomous agents. Attendees will learn production-ready patterns for RAG systems, vector embeddings, and AI agents while understanding the core architectural decisions behind each implementation. Perfect for developers ready to move beyond basic API calls to building sophisticated AI-enhanced applications.

Modern test runners like Vitest and Jest wow us with next-level features. Think in-file concurrency, HMR, embedded Chromium, performance benchmarks - you name it. Yet behind all these goodies lies a labyrinth of runtime mechanics that tunnel deep into the JavaScript runtime. These sweet perks can quickly turn into a pitfall, from subtle mocking glitches to serious performance issues.

Authorization and authentication open standards have been protecting users, apps, and resources for over a decade. That’s plenty of time for attackers to learn to exploit anti-patterns or implementation weaknesses. Learn about modern best practice for OAuth security, and keep your users and data safe in our evolving tech landscape.

We often hear about standards, whether it be web or WinterTC or otherwise, but why are they liked and how do they actually help developers like you? This talk will explain by deep-diving into standards and WinterTC especially!

Security isn’t just about fixing bugs; it’s about understanding the assumptions we make (and avoiding unnecessary panic). In this talk, we’ll dive into the Node.js and Express threat models, which I co-authored, to break down what they trust, what they don’t, and why that actually matters for developers and security researchers.We’ll take a look at real-world vulnerabilities that fit within these models, clear up some of the most common security misconceptions (because not everything is a critical meltdown), and explore how these security assumptions influence bug bounties, exploitability, and long-term fixes. By the end, attendees will walk away with a much better sense of what’s a real security risk, what isn’t, and how to build applications that won’t keep them up at night.

Many organisations have a lot of Java code. As they adopt newer technologies such as Node.js or Cloudflare Workers, maintaining interoperability with this existing code is important. WebAssembly is an instruction set for a stack-based virtual machine. This is the same type of abstract machine the Java Virtual Machine (JVM) uses making it possible to convert existing Java code to WebAssembly.

Despite the exaggerated claims about its decline, Node.js is thriving. Its continued evolution pushes the boundaries of what the modern web can do. We'll start by debunking myths about Node.js, showcasing its recent enhancements and robust performance in the tech landscape.The focus then shifts to Node.js's current role in server-side programming and cloud-native applications, emphasizing the vibrant community contributions that drive its progress. We'll also explore how integrating modern JavaScript features and the influence of emerging technologies are shaping Node.js's future, not signaling its end.Concluding, the talk projects a bright future for Node.js, identifying growth areas and dispelling any misconceptions about its relevance in the evolving world of technology.