Share this page!

Enter URL or ID to Unroll

You can paste full URL like: https://x.com/threadreaderapp/status/1644127596119195649
or just the ID like: 1644127596119195649

How to get URL link on X (Twitter) App

  1. On the Twitter thread, click on or icon on the bottom
  2. Click again on or Share Via icon
  3. Click on Copy Link to Tweet
  4. Paste it above and click "Unroll Thread"!
  5. More info at Twitter Help
Burak Eregar Profile picture
Burak Eregar
@burakeregar
indie dev • building in public • travelling the world 💎 https://t.co/Lzh71PmHdb 👨‍💻 https://t.co/jZsVBIJZc1 🎮 https://t.co/edFPZ7ncwI
Jan 15 8 tweets 2 min read
☠️ here is why your vibe coded project is not safe

when you set db rules, you think you are safe ☣️

watch how i exploit a "safe" supabase db by inserting millions of rows

see the thread below to learn how to protect yours

(don't just bookmark it, add them to the rules file) RLS rules are go to approach by AI models...

but they shouldn't be. you must do these instead:

1) enable RLS but don't put any rules this will close your database to the outside of the world. after this only service role key can reach your db
Jan 13 14 tweets 3 min read
✍️ over 80% of the vibe coded apps have critical security vulnerabilities

here is the checklist to make sure your app doesn't have this:

(don't jut bookmark this, copy them into your .cursorrules file) don't talk to the database directly

if you use tools like supabase or firebase, the ai often connects your frontend straight to the database. this is like leaving your front door open. instead, ask the ai to build a "middleware" or backend api that handles the data for you.