Drupal Pune Meetup - July 25, 2026
Details
Venue:
WPoets Technology LLP
Hermes Waves, Office No. 104
Central Avenue Road
Kalyani Nagar, Pune - 411006
----
Agenda:
09:30 AM – Coffee & Catch-up ☕
Arrive, introduce yourself, and connect with fellow attendees.
We’ll kick things off with a casual meet-and-greet session where everyone can introduce themselves, share what they’ve been working on lately, or talk about something interesting they’ve been reading, learning, or exploring.
----
10:00 AM (Session) – Rolling with the punches - Modern MFA against Modern attacks
Passwords are broken. Phishing attacks, credential stuffing, and MFA bypass have made traditional login the weakest link in your security chain. This session introduces FIDO2 and WebAuthn — the open standards redefining how users prove their identity
Usecase:-
A state government portal serving thousands of citizens struggled with phishing attacks targeting employee credentials. By integrating FIDO2 passkeys into their Drupal-based portal, employees now authenticate using biometrics on their device. No password is ever transmitted, making credential theft technically impossible.
Key Takeaways for Attendees:
1. Why passwords & SMS MFA are still phishable
2. How to build a passkey module in Drupal
3. How WebAuthn registration & auth flow works
4. How FIDO2 makes phishing technically impossible
Speaker(s): Roushan Kumar Singh and Mohammed Hisam
----
11:00 AM (Session) – Building AI Agents Beyond Prompt Engineering
Most conversations about AI agents begin and end with prompt engineering. But a well-written prompt is only a small part of what makes an agent work, and it is almost none of what makes an agent safe. The moment an agent can take real actions in a real system, creating content, updating records, publishing pages, sending emails, the prompt stops being your control mechanism. What actually keeps a production agent reliable is everything around the prompt: the tools you give it, the validation inside those tools, the guardrails that constrain what it can do, and the way you handle cost and security.
This session walks through what it really takes to move an agent from a clever demo to something you can trust in production. We look at why a validation check inside a tool is more reliable than a rule written in a prompt, why business logic belongs in code rather than in natural language, and why the safest agent is one whose capabilities are deliberately limited rather than one that is simply told to behave. We cover zero-trust tool design, guardrails in both code and the model, protecting against prompt injection and runaway cost, and knowing where a human must stay in the loop.
The central idea is simple: you do not make an agent safe by telling it what not to do. Instructions have a failure rate. Capabilities you never granted have a failure rate of zero. This is a practical, hands-on look at the validation, guardrails, tooling, cost control, and security decisions that separate a prototype from a production-ready agent
Speaker(s): Akhil Babu
----
12:00 PM – BoF
AI in the Real World: What Are You Building, Using, and Learning?
AI adoption is moving beyond experiments. Teams across engineering, product, operations, support, and other functions are finding practical ways to use AI to solve everyday problems.
Some use cases are delivering measurable value. Others have fallen short of expectations. The most interesting insights often come from what worked, what didn't, and what changed along the way.
The idea behind this BoF is to have practical conversations around:
- What AI use cases are delivering real value in your team or organization?
- What workflows have you successfully augmented or automated with AI?
- What tools, prompts, or patterns have become part of your daily work?
- What challenges did you encounter—quality, security, adoption, or governance?
- What lessons would you share with others starting a similar journey?
- Show and tell: What's the coolest or most impactful AI use case you've built or discovered?
This is intended to be an informal, experience-sharing session rather than a presentation. Come ready to share your wins, failures, experiments, and questions.
----
Drupal org event: here
If you or your organization want to host such a meet-up, please reach out to us over the Drupal Slack channel #pune.
