Node Interactive North America 2017

Who really published this package? Am I getting the same package this person published? Does this package have vulnerabilities? Is this package malware? These are questions we all ask about packages on the npm registry, and the answers are important to us as we develop services and applications with the code shared there. C J Silverio, CTO of npm, Inc, tells you how you can answer these questions and what npm is doing to allow the node world to share code with confidence.

If you were given a magic wand that would remove all implementation flaws from your web application, would it be free of security problems?  If it took you more five seconds to say “No!” (or if, worse, you said “Yes!”), then you’re the target audience for this talk.  If you’re in the target audience, don’t fret, much of the security community is there with you.  After this talk, attendees will understand why the answer to the abovementiond question is an emphatic “No!” and they will learn an approach to decrease their chance of failing to consider an important vector of attack for their current and future web applications.

If there's anything that decades of psychology research have shown us, it's that human cognition is full of bias and fallacy. Even smart software engineers are not immune to being humans. In fact, there's so many things keeping us from being the best developers we could be, preventing us from planning our work effectively to assembling the best teams to being productive in that open office. This talk will go over pieces of psychological research in an effort to make people aware of how their minds work, how it’s making us worse at tech, and what we can do about it.

Node.js is a community centric platform. It grew with individuals and startups into something that’s used at a massive scale today.

With the io.js split and the resulting Node.js Foundation, where is that integral community now? Where is it going? And, most importantly, how can you get involved?

This year, V8 launched Ignition and Turbofan, the new compiler pipeline that handles all JavaScript code generation. Previously, achieving high-performance in Node.js meant catering to the oddities of our now-deprecated Crankshaft compiler.

This talk covers our new code-generation architecture - what makes it special, a bit about how it works, and how to write high performance code for the new V8 pipeline.

There’s an old software joke that goes: “Some people, when confronted with a problem, reach for regular expressions. Now they have two problems.” Regular expressions are a web developer’s best friend and worst nightmare. Sure, you’re glad someone posted the regex pattern for a phone number on Stack Overflow, but when the intern asked you to explain what a “capture group” was, you broke into a cold sweat. So is a “regex” the same thing as a regular expression? How are regular expressions implemented in JavaScript? And just what do Alan Turing and Noam Chomsky have to do with all of this?

Learning Kubernetes is hard. Learning how to set up Kubernetes even harder. Developers have to provision a cluster from a cloud provider and have to start paying for that immediately. This can discourage developers who want to build scalable microservices. On big teams, usually, developers have a DevOps team who can take care of scalability and optimization.

When breaking apart monolithic applications, microservices will have to scale to handle the load of the incoming requests. As the application grows, so will the need for the microservices. When developing their applications, developers can run into the problem where it doesn’t work in different environments. The phrase “It works on my machine” points fingers at a bigger problem. Developers can find this frustrating and it slows down updates to the application. The developer’s workflow can prevent this by using minikube.

For large enterprise applications who use the cloud as their platform, Kubernetes has been one of the many solutions to these issues. Quickly deploy, scale, and modernize your microservices with simple commands. Minikube allows you to test this functionality without the cloud provider. As a NodeJS developer, having the functionality to develop a workflow that you would use for your production application is very valuable.

In this talk we will discuss what Kubernetes is, we will discuss the advantages of using minikube, and we will show the functionality of what Kubernetes can do with NodeJS. We will show how to scale your application, how to deploy multiple copies of your application based on metrics, and show how to master blue/green deployments to not lose any uptime during updating your application.

From spew streams to suck streams, Streams are a little understood corner of Node.js that are utilized in almost every internal module and across thousands of NPM packages. How exactly did Streams come to exist? How do they vary from version to version of Node.js? This talk will cover the technical history of “Streams” ranging back to UNIX pipes, and describe along the way how “Streams” derive from fundamental concepts of information technology.

Can Node.js helps in rural communities which generally have very limited internet access, if at all ? Why it seem to be a lot of renewed interest in USSD applications these days in Africa ? This time along, I will challenge you to get back to your feature phones (Nokia 3310 or Motorolla V10).
I will discuss secret things on the successful mobile payment wave’s in Africa. We’ll learn how to interface with USSD gateway with Node.js and HTTP/HTTPS protocol. And how effective this could be. This journey may seem old school but it still part of the global and large scale market. Let's rock Node.js out of Town.

Small group discussion on tips for reducing maintainer burden.