| ▲ | Nextgrid 16 hours ago | |||||||
I find that security, architecture, etc is exactly the kind of skill that takes 10-15 years to hone. Every boot camp, training provider, educational foundation, etc has an incentive to find a shortcut and we're yet to see one. A "basic" understanding in critical domains is extremely dangerous and an LLM will often give you a false sense of security that things are going fine while overlooking potential massive security issues. | ||||||||
| ▲ | nneonneo 10 hours ago | parent | next [-] | |||||||
Somewhere on an HN thread I saw someone claiming that they "solved" security problems in their vibe-coded app by adding a "security expert" agent to their workflow. All I could think was, "good luck" and I certainly hope their app never processes anything important... | ||||||||
| ||||||||
| ▲ | meetingthrower 3 hours ago | parent | prev [-] | |||||||
But if you are not saving "privileged" information who cares? I mean think of all the WordPress sites out there. Surely vibecoding is not SO much worse than some plugin monstrosity.... At the end of the day if you are not saving user info, or special sauce for your company, it's no issue. And I bet a huge portion of apps fall into this category... | ||||||||