Stack Security Guides
Security guides for popular tech stacks used in vibe coding. Each guide covers common vulnerabilities and how to fix them.
Quick Answer
Each tech stack has its own security gotchas. These guides help you secure the specific framework + database combination you're using, with copy-paste fixes and checklists.
3
stacks covered
Next.js
most popular framework
Supabase
most popular backend
Checklists
included for each
All Stack Guides
Next.js + Supabase
Full-stack React framework with Postgres backend. Popular for MVPs and rapid prototyping.
Top issues:
- RLS disabled
- Service key exposed
- Missing auth checks
Next.js + Prisma
Type-safe ORM with Next.js. Great for complex data models and migrations.
Top issues:
- Raw query injection
- Missing input validation
- N+1 queries
SvelteKit + Supabase
Lightweight framework with Supabase backend. Fast builds and excellent DX.
Top issues:
- Client-side auth bypass
- RLS misconfiguration
- Exposed API routes
What's in Each Guide
- Security checklist: Essential settings to configure before launch
- Common vulnerabilities: Issues specific to the stack
- Code examples: Before/after fixes for each issue
- AI patterns: What AI tools get wrong with this stack