The only thing it’s upending is sane engineering practices in my experience. I j... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		mberning 9 months ago \| parent \| context \| favorite \| on: How AI is upending the software development indust... The only thing it’s upending is sane engineering practices in my experience. I just reviewed a python flask app which was basically “vibe coded” by a couple people speed running a checklist of features. I open up the auth.py file to find it is integrated with an idp using oauth. Whether the caller has the correct scopes is never checked. I grab client credentials for a completely unrelated app. Hit /admin using my bearer token. Sure enough anybody with a valid set of client credentials could have had full admin access to this app for a year. But hey, at least when I asked how they tested the app they were quickly able to generate thousands of lines of pytest.

victor9000 9 months ago | [–]

We're entering the age of toddlers on motorcycles when it comes to software engineering.

8n4vidtmkvmk 9 months ago | [–]

I logged into my CTOs account with an empty string once. This was before vibe coding.

rossant 9 months ago | [–]

Vibe coding may make an existing problem even worse.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact