I am still interested in feedback on the tool from more experienced Devs, search for it and check it out yourself. My deep research through Perplexity suggested this as the most state of the art security auditing tool for our apps. As a new vibe-code I don't know what I don't know and don't have the funds to pay professional Devs to help audit my code for weaknesses I'm not qualified to assess.

I do know enough to not trust myself, any AI coding agent, or platforms like that one, without multiple experiences Devs also confirming the coding is secure. I'm building something that manges both identity and LN/eCash credentials, so am waiting to use it with actual private keys/Nsecs until it's been more thoroughly assessed.

I have implemented a privacy-first protocol that creates unique user IDs rather than storing anyone's Npubs or NIP05 IDs. For initial deployment I'm using Supabase I don't want to trust them with anything that may Dox anyone. I believe my handling of Nostr credentials is rock solid, but am far less certain about LN and eCash integrations in my codebase.

As a rule I think we should all assume at all times that IF it can be hacked, it eventually will be.