How are you dealing with vibe coding security risks in AI-generated code?

I’ve been using a lot of AI-generated code lately, and while it definitely speeds things up, security feels like a weak spot.

I’ve run into issues like missing auth, exposed endpoints, and weak configs stuff that AI doesn’t really flag unless you explicitly ask.

Curious how others are handling this:

• Do you rely more on manual reviews or tools?

• Any workflows that consistently catch vulnerabilities?

• Have you faced any real incidents because of AI-generated code?

I was reading about vibe coding security risks and it pretty much aligns with what I’ve been seeing.

Would love to hear your approach 👇