February 21-23, 2024
Montreal, Canada

Top 20 sessions

Architecture & Design Patterns Discussing common anti-patterns preventing your systems from achieving an efficient level of reliability.

We will introduce reliability and then delve into common technical and organizational problems and how to prevent them.
DevOpsJavaScript Feature Flags. Feature Toggles. Canaries. A/B Testing. ...
Many a talk at ConFoo and less well fed conferences will refer to using feature flags as a way to enable seamless integration into a very aggressive release schedule.

Feature Flags are an extremely simple yet powerful tool to streamline integration of complex features.

We'll cover many a known implementation strategies for feature flags so you can become an advocate too.
Artificial Intelligence The ascent of machine learning, especially large language models (LLMs), comes with exorbitant infrastructure costs, making it almost unfeasible for individuals to run such programs independently. Amazon, Azure, and Google Cloud dominate with over 60% market share. This concentration challenges the decentralized essence of the internet, potentially impacting innovation, quality, and freedom.
Architecture & Design PatternsTests & Quality Les services et micro-services sont parmi nous depuis un moment déjà mais sont souvent perçus comme une solution magique à tous les problèmes. Tout n’est pas rose au pays des licornes et créer un nouveau micro-service peut être un exercice demandant. Découvrez les défis que présente de composer avec un monolithe comportant plusieurs interdépendances, du refactor de celui-ci à l’ajustement des tests en passant par les protocoles de communication.
Architecture & Design PatternsArtificial Intelligence In this talk, we will introduce a novel design pattern called "micro-mind-services," inspired by neural networks, which promises to revolutionize how we build applications, particularly in conjunction with AI programming assistants.

Join me to discover this potentially groundbreaking design pattern and explore how it can transform software development in the age of AI programming assistants.
CareerDevOps Everything and everyone fails all of the time. Failure is always an option, it's how you respond that matters! Let's discover how failure can be an opportunity to learn and improve. Join me on a journey to know more about pain, happy little accidents, trial and error, adaptive capacity, failing safely, learning organizations, and resilience. It's time to start embracing failure!
Artificial Intelligence Over the years, we've seen countless shifts in how applications are built. New languages and frameworks have streamlined development. Visual and no/low-code have empowered many to create apps. And now we have AI tools to develop code "for us." With these changes, where does this leave our developers? Is writing code obsolete?

Let's talk about where we are, where we're going, and how to get the most out of this new tool.
PHPSecurity Do you know how to secure your APIs? Tokens alone are far from enough. Automated direct access to the application business logic allows whole new classes of attack vectors and vulnerabilities - data extraction, impersonation, rogue access, and more. You can deploy countermeasures like elevated access requirements, multi-factor auth, response limits, etc. Let's explore both sides of that coin to let you properly design security for your APIs.
Management Did it seem like software platforms used to be better in the past? That's not just nostalgia, they *were* better. Platforms were more intuitive, better suited for user-needs, less invasive of privacy, and easier to use.

In this talk we'll examine (with examples) the process of 'enshittification', a term coined by Cory Doctorow for platform decay—where services become progressively worse to maximise profit—and how to avoid it happening to you.
Architecture & Design PatternsJava & JVM languages Are you looking to build robust and efficient event-driven services? In this talk, you will learn the key concepts and strategies for achieving this, including handling at-least-once message delivery, idempotent command handling, and the laws of event-driven physics. Learn how to use the laws of event-driven physics and build event-driven services that simultaneously handle large volumes of events, network failures, and multiple events.
Architecture & Design Patterns.NET Écrire une fois lire souvent (Write once read many). Arrêter de redécouvrir ce que vous aviez déjà imaginé. Dans cette présentation nous allons vois 5 façons efficace et peu coûteuse d’améliorer votre code. Vous devriez vous attarder à rendre votre code plus facile à lire pour éviter que les prochains perdent leur temps à le comprendre. Vous sortirez de cette session avec des conseils utiles pour accomplir cette tâche.
Architecture & Design PatternsDevOps Danger, Will Robinson! Don’t deploy on Friday! Maybe your team's or company's policy?

Join me as I share from my experience. Using examples from my work on multiple real world projects, I’ll discuss resilience and operability, deployment strategies, pipelines and continuous testing. Discover the details of trunk based development, feature toggles, pair programming and other best practices and gain the confidence to deploy any day of the week!
NetworksSecurity In recent years, the ways that we can deliver HTTP has improved in occasional leaps, from 1.0, 1.1, a big step to 2.0, and now 3.0. One of the biggest obstacles has been TCP, which isn't a great fit for HTTP, but we are stuck with it – or are we? QUIC is a reimagining of TCP that runs over "the other protocol", UDP, giving us yet another step up in performance and security. Discover how it works, and how you can deploy it today.
Architecture & Design PatternsPHP Working with APIs? Great! Did you have to solve surprisingly similar issues in different projects? Did project complexity force you to break the established guidelines for structure, filtering, validation, or pagination? How often have your endpoints, versioning, and evolution stood the test of time? Let's talk about the real examples of solutions I implemented in various APIs. Smile at changing requirements thinking - I've got it!
Architecture & Design PatternsPHP Les monolithes sont mauvais et les microservices sont le meilleur moyen d’atteindre un combo parfait de maintenabilité et d’évolutivité infinie, n'est-ce pas? Aucune décision architecturale n'est parfaite mais une conception basée sur la hype (ou les buzzwords) est probablement la pire option. Et pour votre app existante ou votre nouveau projet révolutionnaire? Découper un monolithe n'est peut-être pas la solution, et si on l'apprivoisait plutôt?
CareerManagement Le nombre de développeurs augmente sans cesse dans le monde et le besoin est criant pour trouver gens qui peuvent guider les autres. Toutefois, comme développeur, il n'y a pas de chemin clair pour devenir Tech Lead. Si c'est un rôle qui vous intéresse, ne manquez pas la chance de découvrir ce qu'est ce rôle et les trucs pour y parvenir.
Architecture & Design PatternsJava & JVM languages GraphQL is a declarative query language that simplifies retrieving data from an application's back end. It provides a clear and comprehensive description of the data in your API, giving you the ability to request only what you need. This makes it easy to evolve APIs over time and enables powerful developer tools.
Architecture & Design PatternsManagement Technical debt is only visible when it's too late. The developer who did the "work" is long gone. But you're here and you're here to stay. You'll be fixing the whole damn thing even if you have to do it all yourself. In this talk we'll discuss how to take those first critical steps in reducing technical debt, how to "sell" people on it and key technical advice to keep an even footing.
Architecture & Design Patterns Microservices are widely adopted, but many companies struggle to maximize their benefits. The misconception is that all parts must be deployed constantly. In reality, some require frequent updates while others remain stable.

In an upcoming talk, I'll elaborate on these insights, highlighting one can use Serverless to pragmatically design a system that allows deploying as often as you need.
JavaScriptSecurity Cross-Site Scripting (XSS) is still one of the most common vulnerabilities in web applications, despite well-known and effective countermeasures. Often neglected however are XSS issues when using a Single-Page Application (SPA) framework like Angular, React, or Vue.js. We will have a look at those systems, analyze the attack surface, and look for both specific weaknesses and specific countermeasures. A must-see session if you are using SPAs.

View all 171 sessions