932: Vibe Coding’s Huge Problem

Wes and Scott talk about the dangers of vibe coding when it comes to authentication and access control. They share real-world examples of security fails, discuss how to avoid client-side-only checks, and offer practical tips for protecting sensitive user data in your apps. Show Notes 00:00 Welcome to Syntax! We build the world’s most painful CAPTCHAs (Kitboga scammers) 02:08 Brought to you by Sentry.io 02:33 Wes’ vibe coding experience Wes’ app 04:38 The Tea app disaster Tea app 07:45 Don’t vibe code access control Better Auth with Better Auth 09:38 Let in, don’t lock down 11:23 Server vs. client-side code 13:46 Visualize access control 15:30 Automate tests 17:00 Sick Picks + Shameless Plugs Sick Picks Scott: A City on Mars Wes: Hotel Collection Essential Oils Shameless Plugs Syntax YouTube Channel Hit us up on Socials! Syntax: X Instagram Tiktok LinkedIn Threads Wes: X Instagram Tiktok LinkedIn Threads Scott: X Instagram Tiktok LinkedIn Threads Randy: X Instagram YouTube Threads