Nnenna Ndukwe
AI Developer Relations Engineering Lead at Qodo AI
Boston, Massachusetts, United States
Actions
Nnenna Ndukwe is an AI Developer Relations Engineering Lead and Software Engineer, passionate about AI. With 10 years in industry, she's a global AI community architect championing engineers to build in emerging tech, and serves as an ambassador for OpenAI's Codex, Claude, and the Agentic AI Foundation. She studied Computer Science at Boston University and is a proud member of Women Applying AI. Nnenna believes that AI should augment: enabling creativity, accelerating learning, and preserving the intuition and humanity of its users.
Links
Area of Expertise
Topics
Before the Agent Writes Code: Building a Policy Preflight Layer with MCP
AI coding agents can call tools and generate code quickly, but I argue that speed without standards awareness creates new failure modes. In this session, I'll show how an MCP can act as a governance surface, where policies, constraints, and grounded engineering guidance are introduced before code implementation begins. Using PolicyNIM, an open-source preflight layer, we'll give coding agents grounded, citeable engineering guidance.
A small suite of Markdown files becomes structured, AI code generation guidance by retrieving relevant policy evidence, reranking results, synthesizing suggestions with citations, and failing closed when the evidence is too weak to trust. We'll walk through two MCP tools and the CLI, transport choices, and auth boundaries.
This talk is about practical lessons from integrating the MCP with AI coding agents like Codex and Claude Code, along with an evaluation workflow for comparing retrieval quality and measuring impact.
You'll leave with a concrete design pattern for building MCP servers that expose evidence-backed constraints, guidance, and safer defaults for agentic software workflows.
From Pilot Theatre to Production: Rolling Out AI Coding Tools Without Breaking Your Org
Many organizations are stuck in delivering impressive AI pilot demos in a few teams with no safe path to scale, and growing shadow AI. Others rush to broad rollout and wake up months later with fragmented standards and more incidents more frequently.
In this session, we'll walk through a phased rollout framework grounded in real failure modes and hard exit criteria. We'll cover how to stage adoption by repository criticality across codebases, "context eligibility" before higher-tier usage, and use champions and feedback loops to ensure compliant pathways are easier and more optimal than shadow AI workarounds. You'll walk away with checklists, stage gates, and anti-patterns you can apply to your own AI rollout plans.
Stop AI-Driven Quality Collapse: A 5-Layer Operating Model for Engineering Leaders
As AI coding tools spread through your engineering org, your dashboards show a "productivity boom" right up until incidents spike, rollbacks climb, and architectural consistency quietly falls apart. This is engineering quality collapse disguised as productivity, and it's becoming the default failure mode of AI-assisted development at scale.
This strategy and methodology session introduces a vendor-neutral, 5-layer operating model (Access & Governance, Context Architecture, Quality Gates, Measurement & ROI, and Rollout Strategy) that treats AI-assisted engineering as a true asset. You'll hear about defining decision rights, risk tiers, and non-negotiable controls so teams can move faster and preserve correctness, maintainability, and operational trust.
You'll walk away with a concrete model you can adapt to your org before "AI productivity" shows up as instability in production.
How to Design Code Quality Gates in the AI Era
Sometimes, the small and seemingly insignificant code changes can have the greatest critical path impact on software in production.
This talk provides a systematic approach to designing quality gates that correlate with production stability. We'll break down the four categories worth catching early: functional correctness signals, integration readiness, performance guardrails, and architectural consistency.
We'll build an adaptive enforcement model that distinguishes mission-critical paths from velocity-focused code. You'll see risk-based severity in action, learning loops that strengthen checks, and methods that prove your gates actually work.
You'll leave with a framework to audit their current code quality gates and patterns to strengthen their understanding of impact analysis when shipping software.
Context Engineering for Reliable Agentic Engineering: Guardrails that Scale
AI coding agents can easily amplify loose engineering standards into chaos, unless context is engineered as infrastructure. Research shows 8x code duplication spikes and 154% larger PRs when you don't implement guardrails steering AI across the SDLC.
This talk explains the benefits of using "centralized context planes" as portable infra: machine-readable artifacts (architecture diagrams, agent coding rules, knowledge systems) distributed to your CLI/IDE/Git for AI agents. Build engines that systematize software quality as multi-dimensional gates, embedded where developers already work.
Based off of a code governance white paper I published, we'll codify code quality "dimensions" into constraints AI agents can lean on. For distributed teams, this will make context consistent, visible, and maintainable. Ultimately, it will enable your agentic workflows while preserving software craftsmanship.
You'll get a checklist for context artifacts, checkpoints of where to embed that context in your workflow, and patterns for verification at scale.
Governed Agent Autonomy: The Control Plane for Building Agentic Systems
We see how quickly AI coding tools and agent harnesses are improving. But I often wonder whether the surrounding system can keep that autonomy governable once an agent starts planning, executing tools, changing files, and consuming budget on a team’s behalf.
In this talk, I break down a technical case study based on a real AI coding control-plane architecture and show how serious systems structure autonomy through explicit boundaries: plan gates, permission controls, trust review, independent verification, and runtime observability. I will walk through the patterns that make these ideas concrete, explain why telemetry and quota tracing now belong inside the governance conversation, and show why integrity failures can still happen even with strong coding workflows.
This session gives engineering leaders and practitioners a framework for evaluating AI coding tools. The goal is to achieve agent governance that teams can trust, audit, and scale.
Red Teaming AI: How to Stress-Test LLM-Integrated Apps Like an Attacker
It’s not enough to ask if your LLM app is working in production. You need to understand how it fails in a battle-tested environment. In this talk, we’ll dive into red teaming for Gen AI systems: adversarial prompts, model behavior probing, jailbreaks, and novel evasion strategies that mimic real-world threat actors. You’ll learn how to build an AI-specific adversarial testing playbook, simulate misuse scenarios, and embed red teaming into your SDLC. LLMs are unpredictable, but they can be systematically evaluated. We'll explore how to make AI apps testable, repeatable, and secure by design.
Target audience:
- Application security engineers and red teamers
- AI/ML engineers integrating LLMs into apps
- DevSecOps teams building Gen AI pipelines
- Security architects looking to operationalize AI security
- Developers and technical product leads responsible for AI features
Separation of Agentic Concerns: Why One AI Can't Rule Your Codebase
The dream of a single all-knowing AI running your entire SDLC is both admirable and widespread. But in reality, specialized agents with distinct responsibilities outperform generalist systems.
This talk makes the case for using multiple agents in the SDLC: planning agents that think like principal architects, testing agents that prepare code with adversarial precision, and review agents that enforce quality like seasoned QA engineers.
We’ll explore the technical foundations that make this possible, including deep codebase context engineering, real-world benchmarks, and developer workflow patterns that ensure AI-assisted development scales with both velocity and quality.
Attendees will leave with practical knowledge to leverage agentic AI throughout the development lifecycle that deliver safer, smarter, and more reliable software.
11 Principles for Evaluating AI Dev Tools
Benchmarks measure narrow capabilities. Demos show best-case scenarios. Neither tells you whether AI-generated code will survive production or whether that shiny new tool deserves a place in your stack.
This talk presents a unified framework of 11 principles for evaluating AI-generated code and the tools that manage it. Because code quality and tool quality are inseparable: bad tools generate bad code, and bad code evaluation processes never catch it.
We'll reframe AI use with responsibility boundaries where the core questions shift from "is it fast?" to "can this be understood under pressure, safely changed, and defended to a stakeholder?"
Through real-world patterns from teams adopting AI across their SDLC, we'll apply these principles to distinguish tools that surface risk from tools that hide it.
Attendees will leave with a practical rubric to decide which AI tools to trust, which to constrain, and how to keep human judgment at the center of fast-moving, AI-augmented engineering.
Design Systems for AI Code: Preserving Engineering Judgment with AI
AI is a force multiplier that turns weak standards into architectural chaos. As code review becomes the ultimate bottleneck, engineering teams must bridge the gap between human intuition and machine output. This talk introduces a holistic framework for designing systems around AI coding. We explore how to codify architectural intent, from module boundaries to failure awareness, into machine-readable guardrails. Learn how to leverage context engineering to ensure your AI code tools respect your system’s design, preserving long-term maintainability without sacrificing the speed of the AI era.
1. Attendees will learn how to apply design, maintainability, quality, and chaos prevention to build a holistic verification layer for AI-generated output.
2. Learn how to build infrastructure that automatically feeds architecture diagrams, API contracts, and memory layers into AI agents to ensure alignment with senior intuition
3. Gain a practical methodology for encoding architectural reasoning into durable systems, allowing senior developers to shift from manual "line-coders" to "Policy Guardians" of the codebase.
AI Code Flood: Protecting Open Source Maintainers and Code Quality at Scale
AI has dramatically increased the volume of contributions to open source projects. While this lowers barriers to entry, it has also created a new strain on maintainers: pull requests scaling faster than human judgment and unsustainable review capacity. The result is rising cognitive load, burnout, and declining long-term project health.
This talk explores how AI-generated code is changing the shape of open source contribution. Rather than positioning AI as the problem, we'll introduce maintainer-first principles for the AI era, including treating code review as a boundary rather than a rubber stamp, prioritizing intent and explainability over raw output, and using AI to amplify human discernment instead of replacing it.
TechBash 2025 Sessionize Event
The Commit Your Code Conference 2025! Sessionize Event
AppSec Village - DEF CON 33 Sessionize Event
Women on Stage Global Conference
5 Security Best Practices for Production-Ready Containers
Nnenna Ndukwe
AI Developer Relations Engineering Lead at Qodo AI
Boston, Massachusetts, United States
Links
Actions
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top