
After 3 Months of GRINDING... I hit 7k in revenue!
Still a bit stunned typing this. Three months ago I was refreshing Stripe hoping for one sale. Now there's a small but growing group of people paying every month to keep their apps from leaking.
CheckVibe is a security scanner for vibecoded apps shipped fast with AI tools. You paste a URL or hook up a GitHub repo and it surfaces what's leaking: secrets in the frontend, open database rules, missing headers. Two of us, fully bootstrapped, no funding. Three months in and we've done about $7k in gross volume, 200+ all time paying customers, 5k signups. Public Stripe link in case anyone's seen too many fake numbers: https://profile.stripe.com/checkvibedev/ZumatA0Y
A few things that actually worked:
TikTok slideshows have carried us. Aesthetic Pinterest-style backgrounds with tool names overlaid, five slides, no branding on the account. One hit a million views and is still quietly sending signups weeks later. 15 minutes to make. As a 2-person team that can't afford to spend hours on content every day, this format is unreasonably good.
Cold outreach worked, but only the version where I scanned the prospect's app first and DMed them what I found. Generic pitches got ignored. Useful findings got replies almost every time.
Paywall design was a 3x lever. The first version blurred all results, which felt clever and barely converted. Switched to one that just shows the count of critical issues with the actual findings locked. Conversion tripled. Curiosity beats obfuscation.
What nearly killed me was mobile activation tanking compared to desktop and not catching it for weeks. Onboarding had too many steps on small screens. Cut two and the gap basically closed overnight.
If you've shipped something with AI tools and haven't really checked what's exposed, checkvibe.dev runs in 30 seconds. Scan for free, only pay if you have issues. Almost every app I've scanned came back with something.