Our conference includes small sessions of 30min each (20 minutes Talk + 5 minutes Q&A), delivered by speakers from all over the world, two panels, and various competitions. The following timetable is based on GMT.
Hour
Speaker
Talk
07:00 GMT
Welcome Talk
Welcome Talk
The conference will start with a short welcome talk. During this talk we will go over the schedule and provide more information about the various activities.
07:05 GMT
How to Deploy a Node.js Application using Docker and Kubernetes.
In today’s cloud-native era, writing great code is only half the story—deploying it efficiently and reliably is just as critical. In this session, you’ll follow the end-to-end journey of a simple Node.js application, from local development to a fully containerized environment and orchestrated deployment with Docker and Kubernetes. Along the way, you’ll gain practical insights into building, packaging, and running applications at scale in modern infrastructure.
07:35 GMT
Georgii Perepechko
Boy Scout Rule in the Age of AI: Leaving Codebase Cleaner than You Found it
Artificial Intelligence is rapidly becoming embedded in developers’ workflows (from code-generation assistants to auto-refactoring bots) — and often the temptation is to rely on it blindly, which can lead to messy and brittle code with a lot of duplication. This talk explores how the “always leave the code cleaner than you found it” rule can be applied to modern code bases powered by AI. We will talk about concrete techniques like setting up and enforcing codebase standards, providing exhaustive context, linting, formatting, unit- and e2e-testing, refactoring code incrementally, and keeping docs up to date. By the end, you will have a toolkit of strategies to make sure your AI-assisted code is not only working — but also remains maintainable and readable.
08:05 GMT
Nikolay Gushchin
Scaling Micro-Frontend Architecture with React Module Federation
This talk presents a real-world case study of moving a large web application to a micro-frontend architecture using React and Webpack Module Federation. The speaker will dive into how to break down monolithic frontend applications into independent, reusable modules. Key topics include optimizing performance, managing dependencies across micro-frontends, and setting up CI/CD pipelines to ensure smooth deployments. The session will also cover the integration of tools such as React-Query, Next.js’s server-side rendering, and performance improvements for large-scale applications.
08:35 GMT
XtremeJS Hackathon
XtremeJS Hackathon
An intense, fast-paced competition where participants race to solve a real-world programming challenge. Any tool, any library – even AI – is allowed. The first to build a working solution, submit the code, and deliver the correct result claims victory. A thrilling test of speed, creativity, and coding mastery.
09:00 GMT
First Break
First Break
09:30 GMT
Hadar Geva
What React Looks Like When Code Writes Itself
AI has reached the point where it is not just helping us write React code, but is fundamentally reshaping how we architect applications. This talk examines the patterns, anti-patterns, and surprising architectural decisions that emerge when React applications are built primarily through AI-assisted code. Through analysis of dozens of AI-generated React projects, we’ll explore how LLMs approach component design differently than human developers, favoring composition over inheritance, creating unexpectedly flat component hierarchies, and generating test suites that reveal blind spots in traditional testing approaches. Through a live demo, we’ll explore an LLM-scaffolded React app, examining its folder structure, component design, and testing patterns, and compare it to human-written code. We’ll discuss unique trends, like LLM tendencies to favor functional components with TypeScript or to nest contexts excessively, and their implications for maintainability and performance. Attendees will leave with insights into leveraging LLMs effectively, recognizing AI-generated code smells, and adapting these patterns for scalable, production-ready React apps.
10:00 GMT
Alon Mureinik
This DoS goes loop-di-loop – preventing DoS attacks in your Node.js application
Node.js’ single-threaded nature makes it very susceptible to DoS attacks. While Node.js’ event loop allows performing some operations in an asynchronous fashion, it’s still quite easy to write a vulnerable Node.js application by making a few simple mistakes. In this talk I’ll cover some common ways a Node.js application may be vulnerable to DoS attacks and some common best-practices and counter measures to defend against such attacks.
10:30 GMT
Yishai Feldman
Creating Tree Shakeable NPM packages
NPM packages are the most popular and powerful way today for making your code reusable and share it between various projects. But as most of us are starting to code for the web by developing web applications, when the time comes and we need to create and publish our own first NPM package, we find ourselves guessing what the best practices are we should follow.
11:00 GMT
XtremeJS Breakout Room
The XtremeJS Breakout Room
The Breakout Room game takes place online. The participants in this game will need to find their way out by overcoming JavaScript-based challenges. The first one to break out of the room is the winner.
11:30 GMT
Second Break
Second Break
12:00 GMT
Gil Fink
Unleashing AI in Your Web Apps
The web is evolving, and AI is at the forefront. This session introduces the cutting-edge Prompt API, a powerful new tool that empowers web developers to seamlessly integrate on-device AI capabilities directly into their web applications and Chrome extensions. We’ll explore what the Prompt API is, how it works, and walk through practical examples of how you can leverage large language models (LLMs) to create intelligent, responsive, and context-aware user experiences without relying on cloud-based AI services.
12:30 GMT
Haim Michael
Lazy Powers: Iterator Helpers in ECMAScript 2025
Iterators have always been a quiet powerhouse in JavaScript, enabling developers to work with sequences of data in flexible and efficient ways. With ECMAScript 2025, iterators take a major leap forward through the introduction of Iterator Helpers—a set of built-in methods like map
, filter
, take
, and drop
that bring functional programming patterns directly to iterators. In this session, Haim Michael will explore how these helpers unlock the true lazy powers of JavaScript. You’ll learn how to build expressive data pipelines without the overhead of manual loops, process large collections efficiently through lazy evaluation, and write code that is cleaner, more modular, and easier to maintain. We’ll walk through practical examples, explore real-world use cases, and highlight how Iterator Helpers can optimize performance in distributed and data-heavy applications. Whether you’re building front-end features, server-side applications, or handling streams of data, these new tools will change the way you think about iteration. By the end of the talk, you’ll see why Iterator Helpers are one of the most exciting additions to JavaScript in years—and how to start using them to supercharge your development.
13:00 GMT
Tanya Janca
30 Tips for Secure JavaScript
In this talk, we will cover 30 tips for writing more secure JavaScript, emphasizing what to do, what NOT to do, and utilizing open-source tooling to enhance security. JavaScript is not only the most popular web programming language, but it also faces security threats like XSS and code injection, meaning we need to ensure our JavaScript is tough, rugged, and secure. We’ll touch only upon items that are specific to JavaScript, as opposed to agnostic topics that apply to all languages, such as encryption or authentication. By the end, you’ll gain insights into selecting the best framework, adopting secure coding practices, and leveraging tools for web application security, catering to both seasoned developers and beginners seeking practical guidance.
13:30 GMT
XtremeJS Competitive Programming
The XtremeJS Competitive Programming Contest
The competitive programming competition is a Kahoot-based contest with algorithmic challenges that test coding skills, logic, and speed in a fun, competitive format. Make sure you already have the Kahoot app installed on your mobile telephone.
14:00 GMT
Third Break
Third Break
14:30 GMT
Victor Lyuboslavsky
HTTP Message Signatures Demystified: Stronger Security for JavaScript
APIs power modern software, yet many still depend on weak security methods like API keys or bearer tokens. While simple, these approaches offer minimal real protection. Mutual TLS (mTLS) is far more secure but remains notoriously difficult to implement across public APIs and diverse client environments. What developers truly need is a security solution that is flexible, transparent, and resilient—strong enough to safeguard today’s distributed systems without adding unnecessary complexity.
.
15:00 GMT
Oliver Lopez
AI SDK in Action
Discover how to supercharge your web apps with Vercel’s AI SDK—the only library you need for building AI-powered experiences. In this session, Oliver Lopez will show how to create dynamic, streaming UI patterns, integrate AI-driven components and tools, and seamlessly embed intelligent features into your applications. Whether you’re experimenting with new AI ideas or scaling production-ready apps, you will walk away with practical techniques to bring AI to life in your frontend..
15:30 GMT
XtremeJS Championship
XtremeJS Championship
We are going to have a Kahoot-based quiz competition. The competition will take place online, and it will include quiz questions. The points are given in each quiz question in accordance with the correctness and the speed of the answer. Make sure you already have the Kahoot app installed on your mobile.
16:00 GMT
Xperts Panel
XtremeJS Xperts Panel: The AI Revolution in Coding – Tools, Trends, and Tomorrow
Join leading experts for a thought-provoking discussion on how AI is reshaping software development. From agentic IDEs to spec-driven methodologies, the panel explores tools, trends, and the evolving role of developers in the age of intelligent coding. Audience interaction is encouraged.
Gil Fink Asaf Shochet Avida
16:25 GMT
Closure Talk
Closure Talk
This talk concludes the conference. During this 10 minutes talk we will also announce the winners in the various competitions XtremeJ included.