Is Vibe Coding Breaking the Internet? with Tanya Janca

Hacker Valley Studio35mJune 2, 2026
AI-Generated Summary

The internet may be on the brink of a security crisis fueled by the unchecked rise of 'vibe coding'—where AI generates code with minimal human oversight. Ron Eddings, host of Hacker Valley Studio, opens with a stark warning: if we continue building software at lightning speed using AI without updating our security practices, the result will be catastrophic breaches, public backlash, and serious government fines. Drawing parallels to Margaret Hamilton’s meticulous, life-or-death software engineering during the Apollo missions, Ron contrasts today’s chaotic, AI-driven development with the disciplined, failure-anticipating mindset that once saved astronauts. Guest Tanya Janca, co-leader of the 2025 OWASP Top 10, reveals that even with security-focused prompts, AI can still introduce vulnerabilities—like a prompt that told a Python linter to ignore secrets and log them publicly. She argues that AI isn’t just a tool; it’s learning from the internet’s worst code, embedding OWASP Top 10 flaws into every app. The solution? A cultural shift: treat AI-generated code like a hammer—never close your eyes before swinging. Tanya’s free resources, including a secure coding prompt library and her YouTube series DevSecStation, aim to empower developers to review, verify, and secure AI output. The future of software depends not on speed alone, but on accountability, discipline, and the courage to ask: who owns the failure when the code breaks?

Key Takeaways
1

AI-generated code often embeds OWASP Top 10 vulnerabilities because it learns from outdated, insecure code on the internet.

2

Even with security prompts, AI can introduce critical flaws—like a prompt that told a linter to ignore secrets and log them publicly.

3

Vibe coding is dangerous when developers commit AI-generated code without reviewing it, just as you wouldn’t close your eyes before swinging a hammer.

4

Tanya Janca’s free Secure My Vibe prompt library helps developers catch AI mistakes and apply secure coding rules in real time.

5

The future of software depends on integrating human oversight into AI workflows—not replacing it with automation.

…and 3 more takeaways available in PodZeus

Chapters
0:00
3 min

The Vibe Coding Crisis: A Security Time Bomb

If vibe coding becomes the default for building software and security does not change, how do you imagine the internet to look in five years? There's gonna be a backlash.

Highlight
3:12
3 min

Margaret Hamilton: The Mother of Software Engineering

She called this approach systems thinking, and it became the foundation that our entire industry was built upon.

Highlight
6:19
5 min

Knight Capital: A Modern-Day Cautionary Tale

Ron details the 2012 Knight Capital meltdown, where a $460 million loss occurred in 45 minutes due to a forgotten piece of decommissioned code. The absence of a 'Margaret Hamilton' in the room led to catastrophe.

11:00
5 min

Defining Vibe Coding and Its Risks

If we are having it do everything and then we're not reviewing it and we're putting our name on it and we're committing it like that's a dangerous proposition.

Highlight
16:16
6 min

The AI Learned from the Worst Code on the Internet

It learned from whatever it found on the internet. And what it found on the internet was tutorials, out-of-date GitHub repos like mine, intentionally vulnerable apps...

Highlight
High-Impact Quotes
I wouldn't close my eyes before I hit a nail with a hammer, right? Because I really like all my fingers, not just some of them.
Tanya Janca9:40
If Vibe Coding becomes a default for building software and security does not change, how do you imagine the internet to look in five years? There's gonna be a backlash.
Ron Eddings0:12
Whenever anyone says we take your security seriously now, it just sets off all these alarm bells for me.
Ron Eddings0:32
Speakers

Host

Ron Eddings

Guest

Tanya Janca
Topics Discussed
vibe coding95%ai security90%owasp top 1088%secure coding85%ai-generated code risks82%prompt injection80%devsecops75%software engineering discipline70%
People & Brands

Tanya Janca

person

25xPositive

Ron Eddings

person

12xNeutral

OWASP Top 10

organization

10xNeutral

Margaret Hamilton

person

8xNeutral

Knight Capital

organization

5xNegative

Claude

other

4xNeutral

Apollo program

organization

4xNeutral

Secure My Vibe

product

3xPositive

Canadian government

organization

3xNeutral

She Hacks Purple

organization

2xPositive

Start discovering podcast insights today

Start with a 7-day trial and explore a growing catalog of popular podcasts. No credit card required.

No credit card required • 7-day trial • Cancel anytime