JSFoo 2018
With JavaScript being used as much as it is talked about, JSFoo is certainly the most needed conference this year! The reasons for its popularity are also the reasons for its vulnerability (security-wise). Hence this edition will focus broadly on JavaScript and security.HasGeek hosted the first edition of JSFoo in 2011 to address the growing needs of a niche community working with Javascript. Since then, our JS community has grown tremendously. And this year, weβre meeting again on 26 β 27 October to explore new ideas and developments, to implement innovative solutions, and to learn from othersβ experiences. Want to see the quality and topics of talks at last yearβs conference? You can watch the JSFoo 2017 videos or the related ReactFoo 2017 videos to see what was on trend. Or check out the 2017 conference website.
This page was generated from this YAML file. Found a typo, want to add some data? Just edit it on GitHub.
-
π€ Demystifying web application security
- πΉ 1 video
- π 1 slide deck
- π€ Shyam Seshadri
Web Application security has generally been focused aroud OWASP, and terms like XSS, CSRF and the like are generally thrown around. In this talk, the aim is to change the mind-map of how we think about and approach security, and outline a methodology that allows you to think about security in a holistic, comprehensive manner. This talk will not specifically β¦ -
π€ What makes JSON Web Tokens (JWT) secure?
- πΉ 1 video
- π 1 slide deck
- π€ Siddharth Kshetrapal
Thereβs a lot you have to think about when building frontend applications - routing, performance, animations, etc. Security often takes the back seat (not cool!).Between cookies, tokens, keeping users authenticated, and handling resource access, security can become quite tricky. Letβs look at the implementation detail and usage of the popular methods of authβ¦ -
π€ Authentication done right: consuming (and serving) Oauth2.0
- πΉ 1 video
- π€ Arnav Gupta
Your brand has multiple products on the web. They all need authentication. But obviously, youβd maintain a common authentication and user database.Also, in this age, you cannot make a login system without Login with [Facebook|Google|Twitter|...]For the second thing, you need to consume Oauth2.0 (the industry standard now), for the first thing, you need to maβ¦ -
π€ Building a secure BFF at Postman
- πΉ 1 video
- π 1 slide deck
- π€ Ankit Muchhala
Introduce audience to security implications while writing application code for public facing gateway services. The talk will not be a tutorial on security best practices. Instead, it will focus on building an understanding for developing secure applications and outline ways to do so.How to build secure APIs, Understand security challenges while building BFF β¦ -
π€ Joint Q&A: Web application security
- π€ Shyam Seshadri
- π€ Siddharth Kshetrapal
- π€ Arnav Gupta
- π€ Ankit Muchhala
-
π€ Using Service Workers to improve dynamic image delivery in the browser
- πΉ 1 video
- π 1 slide deck
- π€ Rahul Nanwani
As mobile data and mobile devices become more and more accessible in India, we need to build experiences not just for the high-end users but also vary our content dynamically to cater to users with slower devices or poor network connectivity. Images being the single largest contributor to page size provide a great, yet simple, opportunity to optimize for a f⦠-
π€ VueJS at Olacabs
- πΉ 1 video
- π 1 slide deck
- π€ Ashrith Kulai
How we chose a framework for entire org of Olacabs.com. What frameworks did we consider? Why Did we chose VueJs? One Web - The wrapper around VueJS that helps us use it at scale.Ashrith Kulai is one of the core contributors to the Olacabs PWA and One Web Library.OlaCabs is the first ride hailing app in the APAC region to build a PWA.The PWA he built was show⦠-
π€ Birds Of Feather session: AngularJS users
- π€ Vinci Rufus
- π€ Arjuna Suresh
-
π€ Architecture of scalable and resilient NodeJS apps with GraphQL & event-driven serverless
- πΉ 1 video
- π€ Shahidh K Muhammed
The true power of GraphQL lies not just in its syntax but the fact that it makes it possible to reason about applications in ways we have never thought of before. The realtime bits of the GraphQL spec is one such horizons-widening abstraction when we use it as a tool to think about architecting an asynchronous, event-driven backend.Architecting the frontend β¦ -
π€ Birds Of Feather session: Vue in production -- user stories
- π€ Vidya Ramakrishna
- π€ Ashrith Kulai
- π€ Swapnil Agarwal
- π€ Rahul Kadyan
-
π€ The art of writing mature tests
- πΉ 1 video
- π€ Deepak Pathania
As developers, we are all well aware of the importance of writing tests. Whether it is the safeguard against letting silly bugs slide in production code or enforcing certain styles and practices for everyone involved in contributing to the code base, we can all agree that writing tests is an important part of the development lifecycle.And you get the idea. W⦠-
π€ Rethink Async
- πΉ 1 video
- π€ Hemanth HM
Callback hell?Promises?Hmm, they are old, let us talk about async-await?!A computer polyglot CLI, web and unix philosophy β€οΈβr.Contributes to FOSS via Github and is a part of the Yeoman, Webpack team.Curators Node Module Of The Week.Coordinates BangaloreJS meetups.Mentor at GeeksKool -
π€ Birds Of Feather session: GraphQL
- π€ Kiran Abburi
- π€ Shahidh K Muhammed
-
π€ Everything you need to know about client-side malicious code execution
- πΉ 1 video
- π€ Lavakumar Kuppan
Malicious Code Execution is considered to be one of the most serious security issues across any technology. This has plagued client-side JavaScript in the form of Cross-site Scripting. Though this issue has been around since the early days of the web, its variations, prevention techniques and detection mechanisms have evolved over time. This talk will cover β¦ -
π€ The audit-driven approach to security design
- πΉ 1 video
- π€ Dominic Tarr
Secure Software is more importβAudit Driven Securityβ is a software engineering methodology, inspired by Test Driven Development, that you can learn to use to produce secure software.Dominic Tarr works as a developer and protocol designer on secure-scuttlebutt and as a security auditor for least authority. He lives on a sailboat in New Zealand.ant than ever,β¦ -
π€ Joint Q&A" data leakages and privacy on the web"
- π€ Dominic Tarr
- π€ Lavakumar Kuppan
-
π€ ReasonML" Strict, powerful, and forgiving."
- πΉ 1 video
- π€ Hari Gopal
As a developer, Iβve worked for over 9 years with dynamically typed languages, and for the past year, Iβve been learning and working with a new language called ReasonML - a statically typed functional βlanguageβ which, in reality, is a brand new syntax for OCaml. And it compiles to Javascript! Iβve been using ReasonML to build a password manager for teams, aβ¦ -
π€ Birds Of Feather session: Sensitive data leakage, data protection and privacy
- π€ Lavakumar Kuppan
-
π€ Building robust applications using Elm
- πΉ 1 video
- π 1 slide deck
- π€ Ritesh Pillai
At BigBinary, we are in the process of building AceHelp with the aim to provide contexutal help docs for websites and webapps. Contextual help takes into account which page the user is on and what help doc might be most relevant for the user.We are building the frontend for AceHelp using Elm, a functional programing language to build frontend applications. I⦠-
π€ Sponsored talk" MySQL 8 loves JavaScript"
- πΉ 1 video
- π€ Sanjay Manwani
MySQL 8.0 which has recently gone GA is now a fully functioning NoSQL and SQL database.The newly introduced X-Shell allows users to create interactive JavaScript programs for DevOps, Database Management and applications. The new Node.JS connector is also aware that it is interacting with a cluster of MySQL Servers e.g. it is also capable of performing an aut⦠-
π€ Web Workers " a graphical introduction"
- πΉ 1 video
- π 1 slide deck
- π€ Ritesh Kumar
Thanks to the introduction of PWAs, the web is getting faster. But they can be improved further. This talk will focus on how we can use the power of web workers and improve the performance of our websites.I am a Lead Software Engineer @ Anarock.Before this, I worked at Housing.com where I was involved in the development of its PWA and the React Native App.I β¦ -
π€ New kids in browserland
- πΉ 1 video
- π 1 slide deck
- π€ Swapnil Agarwal
Swapnil will talk about some of the recent wonderful APIs that have been added to the browser such as,Intersection Observer API,Credential Management API,Network Information API,Web Share API,Device Memory API,Concurrent Hardware API,Payment Request APISwapnil is a Senior Software Engineer at Meesho (ex-Amazon), and a co-organizer of Vue.JS -
π€ Quick fixes to improve page load time
- πΉ 1 video
- π€ Tejas Dinkar
This talk will be a beginner-mid level talk about quick wins you can do to improve your JS performance.The talk will be covering a bunch of common mistakes1) enable dead code elimination2) dont include lodash entirely3) css modules because youll forget to delete thing4) avoid moment5) use script type=application/json6) put rel headers7) billions of others8) β¦ -
π€ Complex Features Made Easy With RxJS
- πΉ 1 video
- π€ Ben Lesh
In this talk we will add a set of complex features to an existing angular application. these features will have to coordinate animations, user events, and HTTP to improve the UX of the application.Ben Lesh is the Lead on RxJS, and works on the Angular Team at Google. Heβs dedicated to spreading the love and understanding of reactive programming to the web deβ¦ -
π€ One code to rule them all - developing native Android / iOS app + Web App with a common codebase
- π€ Shyam Seshadri
-
π€ Writing the HasGeek app with NativeScript
- πΉ 1 video
- π€ Arnav Gupta
Arnav Gupta, Co-Founder At Coding Blocks