In this episode of Syntax, Wes Bos and Scott discuss the security risks associated with "vibe coding," particularly concerning authentication and access control. Wes shares a personal experience where AI-assisted coding suggested insecure client-side authentication. They then discuss a real-world example of the "T-App" and its security flaws, emphasizing the importance of secure data handling. They provide tips for developers, such as avoiding vibe coding for access control, adopting a "lock down by default" approach, and clearly distinguishing between server-side and client-side code. They also touch on visualizing access control and using AI for security checks and automated testing. Finally, they share "sick picks," with Wes discussing his search for the perfect home scent using hotel collection testers and Scott recommending the book "A City on Mars."
Sign in to continue reading, translating and more.
Continue
