A security engineer built a free scanner after discovering common flaws in apps created with AI coding tools like Cursor and Bolt. The tool, vibeappscanner.com, checks for missing Supabase RLS policies, weak HTTP security headers, absent rate limiting, and poor password policies—issues rampant in rapidly developed projects.

AI tools accelerate feature development but often neglect security fundamentals, leaving databases exposed and applications vulnerable to basic attacks. This scanner offers a targeted solution for developers who shipped fast but now need to audit their work without a full enterprise security review.

The core scan takes five minutes, with full results costing $5. It's designed specifically for patterns common in AI-generated code, helping indie developers and small teams identify and fix critical data leaks before attackers exploit them.