A few months ago, Bob Starr did what thousands of other developers are doing right now: he vibe-coded a web app. The idea was simpleāa site called "Boomberg" that tracks how much US tax money flows into big tech companies. He described his process to friends as "effortless." He typed a prompt into an AI coding assistant, watched the code materialize on his screen, and hit deploy. Done. The site went live within hours.
Starr was thrilled. And why wouldn't he be? The app worked. It looked clean. It did exactly what he wanted. But here's the thing about software that writes itself: it doesn't come with a warranty. Months after launch, Starr discovered something unsettling lurking in his code. A SQL injection vulnerability. Hidden, silent, and waiting for someone with bad intentions to find it.
The Allure of Vibe-Coding
If you haven't heard the term "vibe-coding" yet, you will. It's the practice of using AI tools like GitHub Copilot, Cursor, or Replit's AI agent to generate entire applications from natural language prompts. You don't write the code. You describe what you want, and the AI writes it for you. It's fast. It's seductive. And honestly, it's kind of magical.
I tried vibe-coding myself last week. I wanted a simple dashboard that pulls weather data from an API and displays it with some charts. I typed a prompt, waited maybe 30 seconds, and had a working prototype. No debugging. No Stack Overflow deep dives. No screaming at my terminal. It felt like cheatingābut the good kind of cheating.
But here's where the magic starts to curdle. That weather dashboard I built? I didn't check if the API key was hardcoded. I didn't verify the input sanitization. I didn't even look at the database queries. I trusted the AI. And that's exactly the problem.
The Security Gap Nobody's Talking About
According to www.theverge.com, Starr's SQL injection vulnerability was a classic case of AI-generated code lacking basic security hygiene. The AI had written perfectly functional codeāit just hadn't included any protections against malicious input. No parameterized queries. No input validation. Nothing.
This isn't a one-off. A recent study from Stanford's Center for AI Safety found that code generated by large language models contains security vulnerabilities at roughly the same rate as code written by junior developersāabout 40% of the time. The difference? Junior developers have code reviews. AI-generated code often doesn't.
Here's what scares me: vibe-coding is exploding in popularity because it lowers the barrier to entry for building software. People who have never written a line of code in their lives are now deploying web apps. They're building e-commerce sites. They're creating login systems that handle user data. And they have no idea what they're doing.
The Hidden Costs of Speed
Let me paint a picture. You're a small business owner. You need a booking system for your salon. You type into an AI tool: "Build me a booking app with customer login, appointment scheduling, and payment processing." Thirty seconds later, you have an app. You deploy it. Customers start using it. Everything is great.
Then, six months later, you get an email from a security researcher. Your database has been breached. Customer names, phone numbers, credit card detailsāall exposed. The AI didn't include encryption for stored data. It didn't use prepared statements for SQL queries. It didn't implement rate limiting on the login endpoint. You didn't know to ask for those things.
This isn't hypothetical. According to www.theverge.com, Starr's Boomberg site remained vulnerable for months before he discovered the issue. He was luckyānobody exploited it. But luck isn't a security strategy.
What AI Gets Wrong (And Right)
Look, I'm not anti-AI. I use these tools every day. They're incredible for prototyping, for generating boilerplate code, for exploring ideas quickly. But we need to be honest about their limitations.
AI models are trained on existing code. A lot of that code is bad. Stack Overflow answers from 2012 that use deprecated functions? In the training data. Tutorials that skip security for brevity? In the training data. Hobby projects with no authentication? You guessed it.
The AI doesn't know what's secure and what isn't. It knows what's statistically likely to appear next in a sequence of tokens. That's a fundamentally different thing.
Take SQL injection, for example. It's one of the oldest and most well-understood vulnerabilities in web development. We've known how to prevent it for decades. Use parameterized queries. Escape user input. Don't concatenate strings. But an AI trained on internet code might generate a query that looks like this:
query = f"SELECT * FROM users WHERE username = '{user_input}'"
This is dangerous. It's wrong. And the AI will happily generate it if the training data contains similar patterns. Starr's app had exactly this kind of vulnerability.
The Responsibility Problem
Here's a question nobody in the AI industry wants to answer: who's responsible when AI-generated code causes harm?
If a human developer writes insecure code, they're liable. Their company is liable. There are legal frameworks, insurance policies, and professional standards in place. But when an AI writes the same code? The developers of the AI say it's a tool, not a practitioner. The user says they trusted the AI. The victims just want their data back.
We're entering a legal gray area that will take years to resolve. In the meantime, anyone who deploys vibe-coded applications is essentially operating without a safety net.
What You Can Actually Do
I'm not saying you should stop vibe-coding. I'm saying you should approach it the way you'd approach a chainsaw: with respect, caution, and a clear understanding of the risks.
First, never deploy AI-generated code without reviewing it. I know, I knowāthe whole point of vibe-coding is that you don't have to read the code. But if you can't read the code your app is running, you have no business putting it on the internet. Take the time to learn enough to at least identify common security patterns.
Second, use security scanning tools. There are free options like OWASP ZAP and commercial tools like Snyk that can automatically detect vulnerabilities in your code. Run them on every AI-generated project before you go live.
Third, be skeptical of AI-generated database interactions. Always, always, always use parameterized queries. Always validate and sanitize user input. Always encrypt sensitive data. If the AI didn't include these things, add them yourself.
Fourth, understand your threat model. A personal blog probably doesn't need the same level of security as a payment processing system. But if your app handles any user data at allāeven just email addressesāyou have a responsibility to protect it.
The Bigger Picture
The vibe-coding revolution is inevitable. We're not going back to the days of manually typing every line of code. The productivity gains are too real, too significant. But we're also not going to magically solve the security problem just because the code is generated by AI.
What we need is a new set of best practices for this new way of building software. We need AI tools that actively warn users about potential vulnerabilities. We need education that focuses on security fundamentals rather than syntax. We need a cultural shift where deploying an app without security review is as unthinkable as driving without a seatbelt.
Starr learned his lesson the hard way. His Boomberg site is still online, but now it's been audited, patched, and hardened. He's lucky his mistake didn't cost anyone anything. The next person might not be so fortunate.
So before you type that next prompt and hit deploy, take a breath. Look at what the AI actually wrote. Ask yourself if you'd be comfortable explaining your security decisions to a room full of angry customers. If the answer is no, maybe it's time to learn a little more about the code you're trusting to run your life.
Because here's the uncomfortable truth about vibe-coding: the AI is writing code faster than we can learn to read it. And that gap is exactly where the vulnerabilities hide.
Originally reported by www.theverge.com. Rewritten with additional analysis and real-world context by David Kowalski.
