this post was submitted on 21 Apr 2026
1 points (100.0% liked)

Pulse of Truth

2395 readers
119 users here now

Cyber Security news and links to cyber security stories that could make you go hmmm. The content is exactly as it is consumed through RSS feeds and wont be edited (except for the occasional encoding errors).

This community is automagically fed by an instance of Dittybopper.

founded 2 years ago
MODERATORS
krogoth@infosec.pub
1
Vibe coding upstart Lovable denies data leak, cites 'intentional behavior,' then throws HackerOne under the bus (www.theregister.com)
submitted 3 weeks ago by lemmydev2@infosec.pub to c/pulse_of_truth@infosec.pub
0 comments fedilink hide all child comments
 

A lesson in how not to respond to vulnerability reports UPDATED  Vibe-coding platform Lovable is pooh-poohing a researcher’s finding that anyone could open a free account on the service and read other users' sensitive info, including credentials, chat history, and source code. However, the company’s story keeps changing: First it attributed the publicly exposed info to "intentional behavior" and "unclear documentation," then threw bug-bounty service HackerOne under the bus.…

no comments (yet)
sorted by: hot top controversial new old
there doesn't seem to be anything here