Lovable-hosted app littered with basic flaws exposed 18K users, researcher claims
Summary
The Register reports that Lovable's vibe-coding platform shipped apps with security flaws, exposing nearly 19k users due to misconfigurations in the Supabase-powered backend. A researcher found 16 vulnerabilities (6 critical) in an app hosted on Lovable, highlighting risk from AI-generated code and lack of enforced security features. The piece argues Lovable should provide stronger security scans and accountability for hosted apps.