halans January 30, 2026

AI-Assisted Development: Security Gaps and Solutions

Read with Claude Read with ChatGPT
Table of Contents

Vibe coding — writing software by describing what you want to an AI assistant and accepting whatever code it produces — has become common practice. Developers use tools like GitHub Copilot, Claude, and ChatGPT to generate entire functions, API integrations, and database queries without understanding the underlying implementation. This approach accelerates prototyping and lowers barriers for less experienced programmers, but introduces systematic security vulnerabilities that often go undetected until production.

How vibe coding creates security gaps

AI coding assistants generate plausible-looking code based on patterns in their training data. These tools excel at producing functional implementations but consistently fail to account for security contexts. A developer who asks “write a function to search users by name” will receive working code that likely concatenates user input directly into SQL queries, creates XSS vectors in web outputs, or bypasses authentication checks.
The core problem: developers who don’t understand their code can’t identify what’s missing. Security requires defensive thinking: anticipating malicious inputs, considering authentication boundaries, protecting sensitive data. AI assistants operate on pattern completion, not threat modeling.

Common vulnerabilities in AI-generated code SQL injection

AI assistants frequently generate database queries using string concatenation:

def find_user(username):
    query = f"SELECT * FROM users WHERE name = '{username}'"
    return db.execute(query)

An attacker supplies ‘; DROP TABLE users; – as the username, and the database executes the command. Parameterized queries prevent this, but AI tools default to the simpler concatenation pattern unless specifically instructed otherwise.

Cross-site scripting (XSS)
Generated web code often inserts user data directly into HTML using innerHTML:

function displayComment(comment) {
    document.getElementById('comments').innerHTML += `<p>${comment}</p>`;
}

A malicious comment containing executes in every visitor’s browser. Proper escaping or using textContent instead of innerHTML prevents this.

Authentication bypass
AI tools generate authentication checks that look secure but contain logic errors:

def check_admin(user_id, is_admin):
    if is_admin == "true":
        return True
    return False

The function trusts client-supplied data. An attacker modifies the request to include is_admin=true and gains administrative access. Authentication must verify credentials against server-side data, not trust request parameters.

Hardcoded secrets
AI assistants insert API keys and passwords directly into code:

const apiKey = "sk_live_51HxYz...";
fetch(`https://api.service.com/data?key=${apiKey}`);

These credentials end up in version control and public repositories. Environment variables or secret management systems should store sensitive values.

Insecure deserialization
Generated code often deserializes data without validation:

import pickle

def load_user_data(data):
    return pickle.loads(data)

Python’s pickle module executes arbitrary code during deserialization. An attacker crafts malicious pickled data that runs commands on the server. JSON or other data-only formats avoid this risk.

Recognition patterns for vulnerable code

Code generated by AI assistants shares identifiable characteristics that correlate with security issues:

  • Direct string formatting in database queries (f"SELECT…" or “SELECT " + variable)
  • .innerHTML assignments with user data in JavaScript
  • Authentication checks that examine request parameters rather than session state
  • Credential strings visible in source files
  • Comments explaining what code does but not why security measures matter
  • Missing input validation or sanitization
  • Absence of error handling that could leak system information
    Developers who understand code structure can scan for these patterns. Those who only vibe code cannot distinguish secure implementations from vulnerable ones.

Prompting for more secure code

AI assistants respond to explicit security requirements in prompts. Generic requests produce generic code. Specific requests that mention security considerations yield better results.

Instead of: “Write a login function”

Use: “Write a login function that uses parameterized SQL queries, bcrypt password hashing with a work factor of 12, and stores session tokens in httpOnly cookies with SameSite=Strict”

The detailed prompt forces the AI to include security controls. But this does require security knowledge, you must know what to request. Developers without security background cannot write effective prompts.
Adding review steps helps: “After writing the code, identify potential security vulnerabilities and explain how each is mitigated.”
This produces explanatory output that developers can verify against security checklists, though the AI may miss threats it wasn’t trained to recognize.

Hybrid approaches: AI assistance with human review

Teams adopting AI coding tools need review processes that catch generated vulnerabilities before production deployment.

Code review checklists
Reviewers should verify:

  • All database queries use parameterized statements or ORM methods
  • User input goes through validation and sanitization
  • Authentication checks verify server-side session state
  • No credentials in source code
  • Error messages don’t leak system details
  • Security headers set on HTTP responses
  • File uploads restricted by type and scanned for malware

Static analysis tools
Automated scanners detect common vulnerability patterns. Tools like Semgrep, Bandit (Python), and ESLint with security plugins flag problematic code regardless of source. Running these in CI/CD pipelines catches issues before merge.

Security-focused AI tools
Specialized AI assistants trained on vulnerability patterns can review code. Tools like Snyk Code and GitHub Advanced Security use models that identify security issues specifically. Using these as a second-pass review helps, though they produce false positives that require human judgment.

Incremental learning
Junior developers using AI assistance should pair with experienced engineers who can explain why generated code fails security requirements. This builds threat modeling skills that improve future prompts.

Risk assessment for teams
Teams seeing increased AI-generated code need to evaluate exposure:

  • What data does the application handle? (user credentials, financial information, personal data)
  • What’s the authentication model? (session-based, token-based, OAuth)
  • Where does user input enter the system? (web forms, APIs, file uploads)
  • What external services receive data? (payment processors, analytics, email)
    Applications handling sensitive data or operating in regulated industries need stricter review. A prototype tool for internal use accepts more risk than a customer-facing payment system.

Training requirements
Organizations allowing vibe coding should provide security training covering:

  • OWASP Top 10 vulnerabilities and how they appear in AI-generated code
  • Secure authentication and session management patterns
  • Input validation and output encoding techniques
  • Secrets management and environment configuration
  • Threat modeling basics
  • How to write security-conscious prompts
    Without this foundation, developers cannot identify vulnerabilities in generated code or write effective prompts.

When vibe coding works

Rapid prototyping for internal tools, proof-of-concept demonstrations, and learning projects suit vibe coding approaches. These contexts accept higher risk in exchange for development speed. Security review happens later, if the prototype becomes production software.
Vibe coding fails for production systems, regulated applications, and any code handling sensitive data. These require understanding of security architecture, not just functional implementation.

Tooling and process changes
Teams incorporating AI coding assistance should:

  • Enable static analysis in development environments with automatic scanning
  • Require security-focused code review for AI-generated code
  • Maintain libraries of secure code templates and patterns
  • Document common vulnerabilities seen in generated code
  • Create security-aware prompt libraries that teams can reference
  • Run regular security training for developers using AI tools

Technical debt from vibe coding

AI-generated code creates maintenance burdens. Future developers must understand code they didn’t write, generated by a tool that may have introduced vulnerabilities. This compounds when the original author cannot explain implementation choices.
Teams should document which code came from AI tools, what prompts generated it, and what security review occurred. This context helps future maintainers understand risk.

The verification paradox

Security in AI-generated code requires verification skills that vibe coders lack by definition. A developer who doesn’t understand authentication cannot verify that generated authentication code works correctly. This creates a gap where code appears functional but contains exploitable flaws. A competency trap that looks productive but compounds risk invisibly until exploitation.

The solution requires either learning enough to verify code security, use a different agent to verify the code for security vulnerabilities, or implementing review processes where knowledgeable developers check AI-generated code, and keep humans-in-the-loop. Pure vibe coding without review guarantees vulnerabilities in production.