I almost leaked my users data. What vulnerabilities have you found?

Built this because I shipped an app with a security vulnerability I should've caught.

The issue? I asked Claude to "build an endpoint" but never specified that it should enforce access control. Claude generated working code, just not secure code.

So I tested 100+ prompts. Found 60 that force Claude to be secure by default.

What's the worst vulnerability you've found in AI-generated code? And did you catch it before or after shipping?

Curious what issues are most common in the vibe coding community.