7% of vibe-coded apps ship with wide-open databases
A team audited 1,764 apps built with AI coding tools like Lovable and Bolt. The numbers are bad. 7% had publicly accessible Supabase databases. Anyone with the URL could read the data. 15% of Bolt-generated apps shipped with hardcoded API keys in source. Source: r/netsec post summarizing the audit.
ORIGINAL SOURCE →via Dev.to
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · tech
- [TECH] Rusya'dan sert hamle: Google ve Telegram'a "yasaklı içerik" cezası
- [TECH] Activision quashes rumors that the next Call it Duty will launch on PS4 — 'It's not true'
- [TECH] 'That is unacceptable in a professional development workflow': Microsoft acts after VS Code gives Copilot credit for work a human developer did
- [TECH] Paymentus applies artificial intelligence to bill payments
- [TECH] Carlyle’s $5B Private Equity Shakeup
- [TECH] Xiaomi’den Sürpriz Hamle: HyperOS 3.3 ve Android 17 Testleri Başladı