Ramona Schwering
Developer Relations Engineer @Mittwald
Schöppingen, Germany
Actions
Ramona is a developer advocate and software engineer with roots in quality assurance. She owns both views of the product - that of a tester and a developer. Ramona primarily uses this to strengthen trust in test automation and support the testers and developers alike, becoming a Google Developer Expert in Web Technologies, Women Techmaker Ambassador, and Cypress ambassador.
Links
Badges
Area of Expertise
Topics
From the crypt to the code: Web security explored through horror movies
A cryptic videotape haunting its viewers, a shape-shifting entity haunting a research station, or an astronaut unknowingly carrying an alien onto a spaceship —do these scenarios sound familiar? These horror movie plots share similarities with scenarios in web security you have already encountered.
Join me on a chilling journey through web security as we explore the most common vulnerabilities through the lens of horror movies. From the sinister injection flaws reminiscent of "Alien" to the terrifying specter of broken authentication akin to "Unfriended". If you dare, join me and learn how to conquer the darkness invited by your web applications.
Dangerous Reactivity: Why AI Output Is the New XSS in Vue
Vue developers know one golden rule: never use v-html on user input. Yet, as we're integrating Large Language Models (LLMs) into our applications, we often make a fatal mistake. We're treating AI output as a trusted source. This is fine, right? Well, not automatically....
Let’s look at OWASP LLM05 and how "Improper Output Handling" impacts the security of your components. Therfore, let's discuss examples where safe inputs can trick models, causing vulnerabilities like XSS and injection attacks. By the end, you’ll learn how to be "professionally pessimistic" for AI. You’ll learn how to sanitize LLM data, safely render Markdown, and manage AI-generated content. Join my session to approach technology with caution, I look forward to exploring this with you!
Artful Defense: Let's Sketch Web Security
For many developers, learning about web security can seem scary or boring. This session is designed to flip that idea on its head. I will draw my sketch notes on secure web development live on stage, together with you. ❤️
So... Let's turn web security into a creative adventure! In this super visual talk, we'll use live sketch-noting to imagine your app as a masterpiece in an art gallery... or at least a handy security sketchbook. We'll draw villains like XSS and CSRF, and then we'll sketch the epic defenses to stop them together! You'll leave with an amazing mental model (=a sketch note handout) and practical steps for making your app both beautiful and bulletproof.
Plants vs thieves: Automated Tests in the World of Web Security
Web security is vital in an evolving environment. Imagine your web app as a garden, defended like "Plants vs. Zombies." Our automated tests, like the vigilant plants, identify vulnerabilities. Instead of an endless fight, they act as defenders, addressing issues like thieves, intruders, or zombies if we stay on game terms. Join this session to learn how to ensure web security through your automated tests, emphasizing the fundamental testing types you know instead of focusing on tools only: Helping you navigate cyber threats without introducing new dedicated tools and ensuring your web apps stay secure.
It's a (testing) trap! - Common testing pitfalls and how to solve them
“It’s a trap” - a call or feeling we all might be familiar with, not only when it comes to Star Wars. It’s signalizing a sudden moment of noticing imminent danger. This situation is an excellent allegory for an unpleasant realization in testing. Imagine having the best intentions when it comes to testing but still ending up with tests failing to deliver you any value at all? Tests who are feeling like a pain to deal with?
When writing frontend tests, there are lots of pitfalls on the way. In sum, they can lead to lousy maintainability, slow execution time, and - in the worst-case - tests you cannot trust. But it doesn’t have to be that way. In this session, I will talk about developers’ common mistakes (including mine), at least from my experience. And, of course, on how to avoid them. Testing doesn’t need to be painful, after all.
The Cake Is a Lie... And So Is Your Login’s Accessibility
Much like the promise of cake in Portal, login forms are everywhere in web development. While they may seem functional at first glance, many users with disabilities perceive a maze of invisible walls, from keyboard traps to inaccessible CAPTCHA. It's as if GLaDOS designed these forms herself to test us!
In this session, we will fix the accessibility problems in a real React login component. In a live demo with a screen reader, we will show how simple changes can make the user experience so much better. For example, by using ARIA tags correctly and managing focus more effectively. Let's learn about everyday (a11y) mistakes, both in the Portal game and in real life. The promise of cake may be a lie (or isn't it? 🤔), but accessibility can and should be genuine!
NDC Copenhagen 2026 Sessionize Event Upcoming
JNation 2026 Sessionize Event Upcoming
AI Lowlands 2025 Sessionize Event
Frontmania 2025 Sessionize Event
KCDC 2025 Sessionize Event
WeAreDevelopers World Congress 2025 Sessionize Event
NDC Security 2025 Sessionize Event
Connect.Tech 2024 Sessionize Event
Ramona Schwering
Developer Relations Engineer @Mittwald
Schöppingen, Germany
Links
Actions
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top