What is vibe coding and why is it a security risk?

Vibe coding refers to using AI tools (like Lovable or Replit) to generate and deploy applications via natural language prompts. The security risk stems from 'public by default' deployment settings and the AI's tendency to omit critical security architecture, such as Row-Level Security (RLS) in databases.

What is the impact of Shadow AI on data breach costs?

According to IBM's 2025 report, breaches linked to shadow AI add approximately $670,000 to the average cost of a breach, bringing the total average to $4.63 million.

Vibe Coding and Shadow AI: The New S3 Bucket Crisis

The “vibe coding” era has officially hit the production wall. When the barrier to deploying a full-stack application drops to a few natural language prompts, the delta between a “working” feature and a secure deployment becomes a catastrophic liability. We aren’t just seeing a few leaked keys; we are witnessing the industrialization of the S3 bucket leak.

The Tech TL;DR:

The Exposure: RedAccess identified 380,000 publicly accessible assets via vibe-coding platforms, with ~5,000 containing sensitive corporate data.
The Technical Debt: A systemic failure in “Public by Default” settings and missing Row-Level Security (RLS) in AI-generated database layers.
The Financial Hit: Shadow AI breaches now average $4.63 million, adding roughly $670,000 to standard data breach costs.

The Architecture of an Instant Leak

Enterprise security has spent a decade hardening the perimeter—focusing on Kubernetes clusters, SOC 2 compliance, and rigorous CI/CD pipelines. But while the CISO was optimizing the firewall, a product manager was “vibe coding” a customer intake form on Lovable over a weekend. These apps bypass every existing security gate: they aren’t in the asset inventory, they don’t use company SSO, and they deploy to platform subdomains that rotate faster than a DNS cache.

View this post on Instagram about Vibe Coding, Instant Leak Enterprise

From Instagram — related to Vibe Coding, Instant Leak Enterprise

The RedAccess research quantifies this blind spot. By scanning platforms like Lovable, Base44, Replit, and Netlify, the firm found that 1.3% of the 380,000 discovered assets were leaking sensitive corporate intel. This isn’t theoretical “vaporware” risk; it’s live production data. We’re talking about internal financial records for a Brazilian bank and doctor-patient summaries from healthcare facilities sitting on the open web, indexed by Google because the platform defaults were set to “public.”

“The fundamental disconnect is that AI can generate syntactically perfect code that is architecturally bankrupt. It knows how to make a button work, but it doesn’t know how to implement a Zero Trust architecture.”

To mitigate this, many organizations are now engaging [Cybersecurity Auditors] to perform external attack surface management (EASM) specifically targeting these low-code/no-code subdomains.

Root Cause Analysis: CVE-2025-48757 and the RLS Gap

The technical failure isn’t just in the deployment settings—it’s in the generated logic. Looking at the official CVE vulnerability database, CVE-2025-48757 highlights a critical failure in Lovable-generated Supabase projects: missing Row-Level Security (RLS) policies. In a standard PostgreSQL environment, RLS ensures that a user can only access rows they are authorized to see. The AI-generated layer frequently skipped these checks, allowing any user with a valid API key to query the entire table.

The Vibe Coding Crisis: 45% of AI Code Ships With Security Flaws

This is the “contextual bug” Gartner warns about in its “Predicts 2026” report. Gartner forecasts that prompt-to-app workflows will increase software defects by 2,500% by 2028. These aren’t syntax errors; they are architectural omissions where the AI fails to understand the business rules of data isolation. When the database is a Backend-as-a-Service (BaaS) like Supabase, the lack of a defined security policy means the data is essentially public to anyone who can find the endpoint.

For developers trying to audit these deployments, a simple check for open API endpoints often reveals the lack of authentication. For example, a basic cURL request to a suspected vibe-coded endpoint often returns raw JSON without requiring a Bearer token:

curl -X GET "https://[app-id].lovable.app/api/v1/customers"  -H "Accept: application/json"

If that request returns a 200 OK with a payload of customer PII, you have a critical failure in your identity and access management (IAM) layer.

The Economic Blast Radius of Shadow AI

The cost of this negligence is staggering. According to IBM’s 2025 Cost of a Data Breach Report, 20% of organizations have already suffered breaches linked to shadow AI. The average cost for these incidents has climbed to $4.63 million. The most damning statistic? 97% of those breached organizations lacked proper access controls, and 63% had no AI governance policy whatsoever.

This creates a massive market for specialized remediation. Firms are increasingly turning to [Managed Service Providers] to implement automated discovery scanning and integrate vibe-coding domains into existing Data Loss Prevention (DLP) rules. This is no longer a “policy” problem—it’s a telemetry problem. If your SIEM isn’t flagging traffic to Replit or Lovable subdomains, you aren’t monitoring your perimeter; you’re just watching the front door while the back wall is missing.

The volatility is further compounded by platform-level vulnerabilities. In July 2025, Wiz Research discovered a platform-wide authentication bypass in Base44, where a publicly visible app_id was sufficient to create verified accounts on private apps. This effectively turned the platform’s authentication layer into a suggestion rather than a barrier.

Triage Framework for the Modern CISO

To stop the bleed, security teams must move from a reactive “memo” culture to an architectural “scanning” culture. The following triage path is the only way to inventory the invisible:

Domain	Current State	Target State	Immediate Action
Discovery	Zero visibility	Automated domain scanning	Run DNS/Cert transparency scans for Lovable/Replit
Auth	Public by default	Mandatory SSO/SAML	Block unauthenticated data access
Code Scan	Zero coverage	SAST/DAST integration	Extend AppSec pipeline to citizen apps
DLP	No coverage	Domain-specific DLP	Add vibe-coding URLs to DLP rules

For those seeking to harden their PostgreSQL layers, reviewing the official Supabase RLS documentation is the first step in preventing the type of exposure seen in CVE-2025-48757. Referencing the OWASP Top 10 for Broken Access Control provides the necessary framework for auditing AI-generated endpoints.

The Final Build

Vibe coding is an incredible force multiplier for productivity, but it has effectively democratized the ability to create massive security holes. The “S3 bucket crisis” of the 2010s was caused by a few misconfigured checkboxes; the Shadow AI crisis is caused by the total absence of security consciousness in the prompt-to-production pipeline. The organizations that survive this transition will be those that treat citizen-developed apps not as “toys,” but as production assets that require the same rigor as a core banking system. If you aren’t scanning for these assets today, you’re simply waiting for a researcher to email you about your own data.

For enterprises struggling to bridge the gap between rapid AI prototyping and SOC 2 compliance, partnering with [Software Development Agencies] that specialize in secure AI integration is no longer optional—it is a survival requirement.

Disclaimer: The technical analyses and security protocols detailed in this article are for informational purposes only. Always consult with certified IT and cybersecurity professionals before altering enterprise networks or handling sensitive data.