932: Vibe Coding’s Huge Problem

Wes and Scott talk about the dangers of vibe coding when it comes to authentication and access control. They share real-world examples of security fails, discuss how to avoid client-side-only checks, and offer practical tips for protecting sensitive user data in your apps.

Show Notes

00:00 Welcome to Syntax!

We build the world’s most painful CAPTCHAs (Kitboga scammers)

02:08 Brought to you by Sentry.io

02:33 Wes’ vibe coding experience

Wes’ app

04:38 The Tea app disaster

Tea app

07:45 Don’t vibe code access control

Better Auth with Better Auth

09:38 Let in, don’t lock down

11:23 Server vs. client-side code

13:46 Visualize access control

15:30 Automate tests

17:00 Sick Picks + Shameless Plugs

Sick Picks

Scott: A City on Mars

Wes: Hotel Collection Essential Oils

Shameless Plugs

Syntax YouTube Channel

Hit us up on Socials!

Syntax: X Instagram Tiktok LinkedIn Threads

Wes: X Instagram Tiktok LinkedIn Threads

Scott: X Instagram Tiktok LinkedIn Threads

Randy: X Instagram YouTube Threads