Bugbunny: Securing Vibecoded Apps

Posted2 months ago

zaddyzaddy

6 points

0 comments

Techstory

supportivepositive

Debate

0/100

VibecodingSecurityPentestingAutonomous Agent

Key topics

Vibecoding

Security

Pentesting

Autonomous Agent

Security has always been an after thought, especially with the current vibecoding trend. I have spent the past year working on an autonomous pentest agent for vibe coded apps, now you do not need to wait for days or spend thousands to get your app audited. I have used the agent to detect vulnerabilities in large production systems and have been able to get over 15 CVEs in the process. some examples below

CVE-2025-58434 (9.8/10) - Flowise Full Account take over

CVE-2025-61622 (9.8/10) - Apache Pyfory RCE

A lot more pending CVEs.

Right now the service is currently in beta stage, I am currently seeking feedback and its free for anyone to pentest there vibe coded app

The URL is: bugbunny.ai

Please let me know what you think if you find it useful.

The author introduces Bugbunny, an autonomous pentest agent for vibe-coded apps, and seeks feedback on its beta stage, having already detected several high-severity vulnerabilities.

Snapshot generated from the HN discussion

Discussion Activity

No activity data yet

We're still syncing comments from Hacker News.

Generating AI Summary...

Analyzing up to 500 comments to identify key contributors and discussion patterns

Discussion (0 comments)

Discussion hasn't started yet.

ID: 45721704Type: storyLast synced: 11/17/2025, 8:05:34 AM

Want the full context?

Jump to the original sources

Read the primary article or dive into the live Hacker News thread when you're ready.

View on HN