932: Vibe Coding’s Huge Problem

Wes and Scott talk about the dangers of vibe coding when it comes to authentication and access control. They share real-world examples of security fails, discuss how to avoid client-side-only checks, and offer practical tips for protecting sensitive user data in your apps.

Show Notes

• 00:00 Welcome to Syntax!
  • We build the world’s most painful CAPTCHAs (Kitboga scammers)
• 02:08 Brought to you by Sentry.io
• 02:33 Wes’ vibe coding experience
  • Wes’ app
• 04:38 The Tea app disaster
  • Tea app
• 07:45 Don’t vibe code access control
  • Better Auth with Better Auth
• 09:38 Let in, don’t lock down
• 11:23 Server vs. client-side code
• 13:46 Visualize access control
• 15:30 Automate tests
• 17:00 Sick Picks + Shameless Plugs

Sick Picks

• Scott: A City on Mars
• Wes: Hotel Collection Essential Oils

Shameless Plugs

• Syntax YouTube Channel

Hit us up on Socials!

Syntax: X Instagram Tiktok LinkedIn Threads

Wes: X Instagram Tiktok LinkedIn Threads

Scott: X Instagram Tiktok LinkedIn Threads

Randy: X Instagram YouTube Threads