Do you vibe code Auth/Audit Logs, or use Auth0/WorkOS?

I knows vibe coding makes building a mini tool super easy—few prompts, and boom, it works.

But turning it into a real, public product means adding solid user auth and audit logs. Since security is complex and risky, do people actually vibe code this part, or just plug in existing solutions like Auth0 or WorkOS or anything else?

Curious to hear your different thoughts.

reddit.com
u/NeedleworkerNo3033 — 13 days ago
▲ 2 r/Agentic_Marketing+2 crossposts

Now that coding is stupidly easy, how are you guys solving "What to build" and "How to sell"?

Hey everyone,
Just saw this meme and it hit way too close to home (check the pic in the reply).

───────────────────────────────   
Let's be real: with AI doing the heavy lifting, coding has become the easy part. The barrier to entry for building an app or a full-on Agent business is practically zero now.
But this brings us to the actual million-dollar questions that are keeping me up at night:

  1. IDEA (What to build): When anyone can build anything in a weekend, how do you find a problem that’s actually worth solving? How do you avoid building just another generic wrapper?
  2. USAGE (How to sell): The market is flooded. Distribution is the new bottleneck. How the heck are you guys getting eyeballs and actually getting people to use (and pay for) your products?

For those of you trying to bootstrap a business or build cool stuff in this new "Agent Era," what’s your game plan? Are you hyper-focusing on niche industries, relying on personal branding, or something else entirely?

reddit.com
u/NeedleworkerNo3033 — 14 days ago

We’re getting hit by AI sticker shock. How are you guys catching and stopping this stuff?

We’re dealing with some pretty painful AI cost issues right now, and I’m curious how other teams are handling this.

A few things happened on our side:

First, we had one bad loop that kept calling the model. Nothing fancy, just bad engineering control. Our normal monthly AI bill was around $10k, but that one issue pushed a single day over $5k before we noticed.

Second, someone used a production Gemini key in an AI coding tool / CLI tool. No real limits, no separate dev key, no clear boundary. From the provider side it just looked like valid usage, but internally it was definitely not where we expected that key to be used.

Third, we found some code using API keys directly that were not managed in our normal key system. So when the cost went up, we could see the money being burned, but it was hard to quickly figure out where it came from, who owned it, or whether it was safe to shut off.

So yeah, we’re kind of getting hit by AI sticker shock.

For teams using AI APIs internally, have you run into similar problems?

I’m mostly curious about the practical side:

How did you first notice something was wrong?

Was it a billing alert? Someone from finance? A dashboard? Logs? A traffic spike? Or just someone manually checking the usage page?

And once you noticed it, how did you actually stop it?

Did you kill the key, shut down a job, roll back code, add quotas, rotate credentials, block certain tools from using prod keys, or build some kind of internal AI gateway?

Also, how long did it usually take you to figure out the source?

Would love to hear what actually worked for you guys.

reddit.com
u/NeedleworkerNo3033 — 19 days ago