One night only. Four Speakers.
Drinks and general awesome.

July 21st, City Gallery,
Civic Square, Wellington


Karolina Szczur
Karolina is a product designer and developer living in Melbourne, Australia. She writes extensively on company culture, collaboration and is passionate about improving diversity and inclusion. Karolina has also been working on a handful of community events—currently she co-organises JSConfEU, JSConfAU and CSSConfAU.
Aurynn Shaw
Aurynn Shaw has been a professional software developer for the last 15 years, and has spent the last 4 years working with DevOps culture and technology. Her company, Eiara, offers training in a wide range of DevOps specialities. She is also a mentor in the Summer of Tech programme in Wellington, and the Cultivate NZ programme, also in Wellington. She has spoken at several international conferences, including Kiwicon and PyCon US.
Zoltan Debre
Zoltan Debre is a lecturer, economist, journalist, and software engineer. He has been programming since 1987 and he is an active supporter of Ruby on Rails and a committed evangelist of Ember.js. He's been working with Ember.js since 2012, and was the technical reviewer of the Ember.js Cookbook.
Tom Eastman
Tom is an open source technologist, Python developer, trainer, and devops/security consultant. He believes your two crucial metrics for measuring code-quality should be (a) "Will the person who inherits my code be glad that I wrote it this way?" and (b) "Will the person who attacks my code be annoyed that I wrote it this way?"





Kick Off


Tom Eastman: The dangerous, exquisite art of safely handling user-uploaded files.

Every web application has an attack surface -- the exposed points of interaction where a malicious or mischievous user can commit malice, or mischief (respectively). Possibly nowhere, however, is more vulnerable than the where a user is allowed to upload arbitrary files.
The scope for abuse is eye-widening: The contents of the file, the type of the file, the size and encoding of the file, even the *name* of the file can be a potent vector for attacking your system.
The scariest part? Even the best and most secure web-frameworks can't protect you from all of it.
In this talk, I'll show you every scary thing I know about that can be done with a file upload, and how to protect yourself from -- hopefully.


Aurynn Shaw: Human-Driven Development

Modern software development is a complex process! There’s so many acronyms to know, so many ways of approaching how best to successfully deliver software. Here, aurynn talks about best practises for developing software using humans, meant to be used by humans.


Zoltan Debre: Rapid web and mobile application development with Ember.js

Web application development has been improved a lot in the last few years. We don't build monoliths anymore. Microservices, APIs, small, feature focused solutions. Google introduced the "progressive web application" concept, which means we should provide native experience on mobile and on desktop with the same app. It is not only a concept anymore. It is the reality. You can develop a production ready application quickly using only an advance frontend framework.
This presentation tries to give answers, why big corporates and small startups switched to Ember.js? Why Ember.js developers never felt "javascript fatigue"? How the open source community helps to each other and builds an entire ecosystem to simplify modern web development? How could you learn, adapt and use these techniques from tomorrow?


Karolina Sczcur: Architecture-oriented front-ends with PostCSS

Preprocessors gave us a lot of power to transform and adapt CSS to our needs. But with great power comes great responsibility and we pushed the boundaries of styling as far as we possibly could, forgetting semantics, usability and collaboration.
Are preprocessors still the panacea for our daily CSS struggles? How do we create maintainable and teamwork-empowering systems? And what the heck PostCSS and cssnext have to do with it?
This talk touches on the ways of transforming and writing future-ready CSS with architecture-first approach in mind.


Wrap Up




Home Time


Tickets are just $50 and
spaces are strictly limited.
Buy Tickets