developer & table tennis player
Hi, I'm Dani.
I make things for the web and obsess over topspin.
Upcoming talks
JSWORLD Conference
Hack Me If You Can: Uncovering Web Vulnerabilities
Every web app has ghosts lurking in the shadows — hidden vulnerabilities just waiting to be exploited. In this talk at JSWORLD Conference 2026 at RAI Amsterdam, we look at how some major companies got hacked in the past and walk through a live demonstration of how a real web application is compromised, uncovering the threats that could easily impact your own projects. The session unpacks the most common vulnerability classes, what happens when proper security systems are not in place, and the practical controls every JavaScript developer should have in their toolkit.
View detailsSREday Barcelona 2026 Q2
What Happened and Why: Correlating Load Testing with Observability
Load testing tells you what happened. Observability tells you why. But too often these disciplines operate independently, leaving teams manually piecing together performance regressions with server-side telemetry after the fact. In this joint session at SREday Barcelona 2026 Q2, co-presented with Heather Thacker (Gatling), we explore how to bridge the gap — wiring load test results directly into observability pipelines so SREs and performance engineers can move from a failed test to a root-cause story without bouncing between tools.
View detailsDEVBCN
How To Not Get Hacked: Uncovering Web Vulnerabilities
Security is often treated as someone else's problem — until it becomes everyone's problem. In this talk at DevBCN 2026 at the World Trade Center in Barcelona, we challenge the assumption that security falls outside the developer's remit by walking through real-world breaches from major companies and showing, through a live demo, how a web application can be compromised step by step. The session distils practical steps every JavaScript developer can take to reduce risk and ship safer apps without becoming a security specialist.
View detailsRecent talks
Gatling
Connecting Performance Testing with Observability
Performance testing tells you how your APIs behave under load. Observability tells you what’s happening inside your services. But when these live in separate tools, you’re left jumping between dashboards trying to piece together the full picture. In this joint webinar with Gatling, we walked through how to integrate Gatling Enterprise Edition with Dynatrace — connecting load test metrics directly to server-side traces, logs, and automated alerting workflows, and showing how to go from a failed test to a Slack notification without manual intervention.
View detailsTalent Arena
Observability for Next-Generation Digital Ecosystems
A hands-on workshop at Talent Arena 2026 — part of the Mobile World Capital event in Barcelona — exploring how Dynatrace delivers monitoring and advanced observability across modern digital ecosystems. Attendees played with a live demo application and discovered the power of real-time user data insights. The session covered data ingestion, topology mapping, and end-to-end tracing to link every transaction to its underlying infrastructure, with a particular focus on deep Salesforce cloud platform visibility: from security events and system logs to the KPIs needed to operate resilient, production-grade platforms.
View detailsReact.js Barcelona
React Under Attack: Uncovering Web Vulnerabilities and Securing Your Apps
Last month we witnessed one of the most critical vulnerabilities in React history — a 10/10 CVSS score that allowed anonymous remote code execution. In this talk, we explore how some major companies were hacked in the past and dive into a live demonstration of how a real web application is compromised, uncovering the threats that could easily impact your own projects. From the anatomy of a real exploit to the security systems that could have stopped it, the goal is to leave every React developer better equipped to reason about the security of the apps they ship.
View details