The real reason Tea got hacked (it's NOT vibe coding)
Related videos
AI Is Hacking Everything Now...
Theo - t3․gg
82.0k views
BREAKING: Claude Code source leaked
Theo - t3․gg
197.3k views
Did Cursor really steal Kimi???
Theo - t3․gg
77.4k views
It's finally here.
Theo - t3․gg
152.2k views
My new app is really stupid (I wrote none of the code)
Theo - t3․gg
58.4k views
Agentic Coding Has A HUGE Problem
Theo - t3․gg
95.7k views
Vibe Coding is For Senior Developers
Theo - t3․gg
109.1k views
React got hacked. It's really, really bad.
Theo - t3․gg
112.4k views
How I code with AI right now
Theo - t3․gg
192.1k views
You have no idea how how bad this really is.
Theo - t3․gg
98.9k views
Unlock all features
FREE: Get instant access to 10 AI summaries, chats, or transcripts per day.
Unlock all features
FREE: Get instant access to 10 AI summaries, chats, or transcripts per day.
Unlock all features
FREE: Get instant access to 10 AI summaries, chats, or transcripts per day.
Unlock all features
FREE: Get instant access to 10 AI summaries, chats, or transcripts per day.
Unlock all features
FREE: Get instant access to 10 AI summaries, chats, or transcripts per day.
Related videos
AI Is Hacking Everything Now...
Theo - t3․gg
82.0k views
BREAKING: Claude Code source leaked
Theo - t3․gg
197.3k views
Did Cursor really steal Kimi???
Theo - t3․gg
77.4k views
It's finally here.
Theo - t3․gg
152.2k views
My new app is really stupid (I wrote none of the code)
Theo - t3․gg
58.4k views
Agentic Coding Has A HUGE Problem
Theo - t3․gg
95.7k views
Vibe Coding is For Senior Developers
Theo - t3․gg
109.1k views
React got hacked. It's really, really bad.
Theo - t3․gg
112.4k views
How I code with AI right now
Theo - t3․gg
192.1k views
You have no idea how how bad this really is.
Theo - t3․gg
98.9k views
Top Comments (10)
I build production apps on Firebase. In my experience, it's not "exposed by default." Instead it's "nothing is exposed by default." I have to write rules to permit any and all access.
You rants tend to be extremely unsubstantiated. Firebase is by default locked down in security rules and also reminds you over and over that your rules are open once you've opened them. Devs could make a f#%k up just as bad as this with any type of backend but yeah let's just entirely write off all the time and effort firebase saves people because someone used it in a dumb and irresponsible way. I'm so tired of listening to your rants when you clearly haven't even used it to the extent you need to to talk about it properly.
The firebase part of this video is very misleading, like it's just to hate... Firebase blocks all queries by default, you have to write firestore rules to allow this, and they send you emails and put big orange warnings on the page if your rules are too permissive. Yes, traditional APIs are good, but Firebase isn't bad either.
This sort of thing is exactly what I'm expecting to happen to some of these rushed ID services to allow porn access in response to the UK's Online Safety Act.
Man, its so weird watching your stream then seeing the final video. Your editor does a fantastic job!!!!! Bravo!!!
Why would they need to keep the images after the user is verified is my first question.
I’m going to be the devils advocate here, your stance on election is that it’s good because it lowers the bar for people to release apps they never could have before, even if the app itself is abysmal. I see a lot of parallels between that and firebase, where with both electron and firebase it’s fine if you use it correctly, but on average it’s going to be used wrong and you should build a custom application instead because it’ll provide a less broken experience in the end.
Another reason it’s not vibe coded because Tea app launched in early 2023 and ChatGPT 3.5 was Nov 2022. Vibe coding was not a thing back then and the best ppl can do was just asking LLM questions instead of SO. …also vibe coded app probably won’t have public bucket… that’s too dumb even for AI 😂
as someone who's tried to add security rules to firestore/realtime database on an existing mobile app that didnt have any, it's excruciating
For me as a 25yr software dev, If I tend to see Mobile devs, in the middle of backend and frontend. But I guess that's how it started, today it's probably different.
Unlock the Data Inside
Turn Videos into Knowledge
- Get FREE 10/day: transcripts, summaries, chats
- Chat with videos, export text & PDF
- $1 free API credit for RAG, chatbots & research
Free forever plan • All features unlocked
Top Comments (10)
I build production apps on Firebase. In my experience, it's not "exposed by default." Instead it's "nothing is exposed by default." I have to write rules to permit any and all access.
You rants tend to be extremely unsubstantiated. Firebase is by default locked down in security rules and also reminds you over and over that your rules are open once you've opened them. Devs could make a f#%k up just as bad as this with any type of backend but yeah let's just entirely write off all the time and effort firebase saves people because someone used it in a dumb and irresponsible way. I'm so tired of listening to your rants when you clearly haven't even used it to the extent you need to to talk about it properly.
The firebase part of this video is very misleading, like it's just to hate... Firebase blocks all queries by default, you have to write firestore rules to allow this, and they send you emails and put big orange warnings on the page if your rules are too permissive. Yes, traditional APIs are good, but Firebase isn't bad either.
This sort of thing is exactly what I'm expecting to happen to some of these rushed ID services to allow porn access in response to the UK's Online Safety Act.
Man, its so weird watching your stream then seeing the final video. Your editor does a fantastic job!!!!! Bravo!!!
Why would they need to keep the images after the user is verified is my first question.
I’m going to be the devils advocate here, your stance on election is that it’s good because it lowers the bar for people to release apps they never could have before, even if the app itself is abysmal. I see a lot of parallels between that and firebase, where with both electron and firebase it’s fine if you use it correctly, but on average it’s going to be used wrong and you should build a custom application instead because it’ll provide a less broken experience in the end.
Another reason it’s not vibe coded because Tea app launched in early 2023 and ChatGPT 3.5 was Nov 2022. Vibe coding was not a thing back then and the best ppl can do was just asking LLM questions instead of SO. …also vibe coded app probably won’t have public bucket… that’s too dumb even for AI 😂
as someone who's tried to add security rules to firestore/realtime database on an existing mobile app that didnt have any, it's excruciating
For me as a 25yr software dev, If I tend to see Mobile devs, in the middle of backend and frontend. But I guess that's how it started, today it's probably different.