Replying to Avatar jsr

Earliest days of vibecoding-as-a-target.

Without a radical increase in security, vibecoders will get wiped out & lose their savings.

And their companies will get hit with fat breaches.

Me? I'm waiting for attackers to figure out how to reliably slip backdoors into vibecoded outputs at scale.
Avatar
Currency of Distrust 4mo ago 💬 1

Data poisoning 😆 super interesting attack vector.

Similar but different - Have you seen how some are finding the most commonly hallucinated NPM packages and then creating those packages with malicious code?

Reply to this note

Please Login to reply.

Discussion

Avatar
jsr 4mo ago

I have, it's a clever vector.

But what I find especially interesting is how all of the old categories of attack are sort of getting...rediscovered for the vibecoding era.

This is like the reboot of typosquatting.