Comment by gowld
5 days ago
Not everything is entertainment. Some software is useful, but buggy or poorly designed.
Yesterday, I was using a slow and poorly organized web app with a fantastic public-facing API server. In one day, I vibe coded an app to provide me with a custom frontend for a use case I cared about, faster and better organized than the official app, and I deployed it to cloud "Serverless" hosting. It used a NodeJS framework and a CSS system I have never learned, and talked to an API I never learned. AI did all the research to find the toolkits and frameworks to use. AI chose the UI layout, color scheme, icons, etc. AI rearranged the UI per my feedback. It added an API debug console and an in-app console log. An AI chatbot helped me investigate bugs and find workarounds. While I was testing the app and generating a punchlist of fix requests, AI was coding the improvements from my previous batch of requests. The edit-compile-test cycle was just a test-test-test cycle until the app was satisfactory.
0 lines of code or config written by me, except vibe instructions for features and debugging conversation.
Is it production quality? No. Was it part of a giant hairy legacy enterprise code base? No. Did it solve a real need? Yes. Did it greatly benefit from being a greenfield standalone app that integrated with extremely well build 3rd party APIs and frameworks? Yes. Is it insecure as all heck thanks to NodeJS? Maybe.
Could a proper developer review it and security-harden it? I believe so. Could a proper develop build the app without AI, including designing and redesigning and repeatedly looping back to the target user for feedback and coding and refactoring in less than a week? No.
If it's a React frontend, unless it put __dangerouslySetInnerHtml in there to render HTML received from the API, the frontend is likely going to be perfectly secure.