(www.wiz.io)

122 points waldopat | 1 comments | 30 Jul 25 16:12 UTC | HN request time: 0s | source

Show context

zamalek ◴[30 Jul 25 17:09 UTC] No.44736778[source]▶

Hot on the wheels on the vibe-coded Tea breach. Things are looking great for vibe coding.

Don't get me wrong, I have been been more hands off (though not completely, and very prescriptive) with an SPA side project and it's going great. Claude makes way better looking UIs than my dog ugly developer UIs. But vibing auth? That should seriously count as _legal_ gross negligence.

replies(5): >>44736996 #>>44737543 #>>44737655 #>>44738035 #>>44738150 #

IanCal ◴[30 Jul 25 17:23 UTC] No.44736996[source]▶

>>44736778 #

Nothing here says auth was vibe coded. It’s a platform for vibe coding.

replies(3): >>44737432 #>>44737436 #>>44737727 #

loupol ◴[30 Jul 25 17:57 UTC] No.44737432[source]▶

>>44736996 #

There's also nothing saying they are not dog fooding at least a little bit.

replies(2): >>44739344 #>>44743278 #

1. IanCal ◴[31 Jul 25 07:26 UTC] No.44743278[source]▶

>>44737432 #

There’s nothing saying they didn’t do this deliberately, but it’d still be an unsubstantiated accusation to say that’s why there was a problem with auth.

↑

Critical vulnerability in AI coding platform Base44 allowing unauthorized access