Stop discovering CVEs at review time, in the pipelines or, even worse, in production! In this lightning talk, you'll see a free, developer-first tool that surfaces vulnerable dependencies as you code-and auto-fixes them right inside your IDE. We'll cover one-click scans on existing projects, inline remediation, and how the embedded Model Context Protocol (MCP) server lets Gemini or Claude explain CVEs, propose safe upgrades, and even draft fix PRs without leaving your editor. Expect a snappy demo, copy-paste setup, and practical tips to roll it out team-wide the same day.

Dealing with secret keys on its own can be a source of frustration. Add to that the complexity of hybrid rendering, multiple deployment environments, and AI coding agents and it becomes even more of a challenge. Phil will show you how to use varlock.dev to turn your .env files into a source of confidence and demonstrate how it can prevent secret leaks in your Next.js apps and beyond.

Powerful generative AI features are quickly becoming a baseline in modern development. Potential blockers include privacy concerns, the need for a stable connection, and the costs associated with using or hosting models. However, we can now leverage generative AI directly in the browser on the user's device using emerging Web APIs like WebNN, combined with higher-level frameworks, for a better developer experience. In my session, I’ll discuss the current state of in-browser ML and AI features, compare the main players, and show you how to start building an offline-ready, future-proof, standards-based web application.

Problem: Traditional AI application development often involves juggling multiple tools, APIs, and frameworks, leading to inefficiencies, complexity, and limited scalability. Developers are stuck in outdated paradigms that struggle to keep up with the growing demands of modern AI solutions.

Solution: The Model Context Protocol (MCP) offers a transformative approach to AI app development—essentially function calling on steroids. MCP represents a paradigm shift by streamlining the integration and management of core functionalities like file systems, databases, and other essential services through its innovative framework. By enabling seamless connections and robust functionality, MCP revolutionizes how developers build and deploy smarter AI-driven applications.

Description: This hands-on workshop empowers JavaScript developers to explore all facets of MCP development. Participants will learn to build MCP clients, set up MCP servers, and leverage existing MCP servers to create robust AI applications. Through practical exercises, you'll discover how MCP simplifies development, boosts efficiency, and delivers smarter AI-powered solutions. You'll also gain insight into how MCP's groundbreaking function-calling model enhances workflows, allowing seamless management of tasks such as file systems, databases, and more.

Key Takeaways: - Master the fundamentals of MCP and its innovative function-calling approach. - Build and configure MCP clients and servers from scratch. - Explore how to utilize existing MCP servers to streamline development tasks. - Gain hands-on experience in transforming traditional AI workflows into scalable, efficient models.