alt Hacker NewsKinda crazy but hopefully the future holds a Clippy-esque thing for people who don’t know to set up CI, checkpoints, reviews, environments, etc. that just takes care of all that.
It sorta should do this anyway given that the user intent probably wasn’t to dump everyone’s data into Firebase or whatever.
I personally would like this as well since it gets tiring specifying all the guardrails and double-checking myself. Using this stuff feels too much like developing a skill I shouldn’t need while not focusing on real user problems.
Replies
CI doesn't magically takes care of security, that's a naïve understanding of vulnerabilities.
Someone with the right mindset needs to be there providing guidance and architectural input.
And even then that's not enough. Something like a super extensive testing set like in SQLite is the best we can do.
This problem is unrelated to CI and dev practices etc, this is about trusting the output of generative AI without reading it, then using it to handle patient data.
Vibe coding is just a bad idea, unless you’re willing and able to vet the output, which most people doing it are not.