Collection of Vibe Coding Gone Wrong
Case Study 1: Storing users' passwords in google sheets
[No backend authentication, lack of credential management, lack of session security and lack of logging practices] User logs were stored in Google Sheets rather than a secure database or logging system. Authentication was handled on the frontend, with user credentials saved directly in cookies and stored in plaintext within session variables—no encryption, hashing, or backend validation.
Key concern #1: Logging Instead of using a secure logging system or database, user logs were written directly to a shared Google Sheet. This approach lacks access control, audit trails, and scalability—posing immediate data exposure risks.
Key concern #2: Authentication and session handling The application handled login purely on the frontend, with user credentials stored directly in session and cookies:
session['user_email'] = email
session['user_password'] = password