three AI reads at a time

Bank of America

4 items

WIRED · 2026-05-07 2026-05-09-w3

5,000 Vibe-Coded Apps Are Leaking on the Open Web — and the S3 Analogy Misses the Legal Novelty

RedAccess found over 5,000 exposed apps across the four leading vibe-coding platforms, with roughly 2,000 leaking real PHI, customer chat logs, and internal strategy decks. These aren't misconfigured storage buckets; they're auth logic the platform generated and the user never saw. The S3 analogy that's circulating misses the legal novelty: AWS could credibly disclaim your bucket policy because you wrote it. Lovable, Replit, and Base44 wrote the auth logic that isn't there. That shifts where liability attaches, and the first court to hold a code-generation platform partially liable for a generated vulnerability resets every product roadmap in the category overnight. It's the same verification failure the hedge fund and interpretability stories surface from different angles: the layer that was supposed to enforce quality or security has been dissolved by the technology it was meant to govern. The people building trust infrastructure for that layer, across all three markets, are the ones with a durable position.

# tags
ai-1.0-defensibilityai-coding-toolsai-cybersecurityai-securityai-vendor-governancedata-privacyenterprise-ai-adoptionliability-ambiguitylovablepilot-to-scalereplitresponsible-disclosureshadow-itvibe-codingwired
◆ entities
Amazon S3Amjad MasadAndy GreenbergBank of AmericaBase44CostcoDor ZviFedExJoel MargolisLovableMcDonald'sNetlifyRedAccessReplitTrader Joe'sWIREDWix
→ threads
ai-1.0-defensibilityai-vendor-liabilitypilot-to-scalevibe-coding-governance
⟷ links
2026-05-07-32026-05-04-22026-05-06-12026-04-04-22026-04-01-12026-03-08-22026-03-09-32026-04-01-32026-05-01-w12026-03-13-w12026-04-17-22026-05-01-12026-05-01-22026-05-01-32026-05-05-12026-05-06-3
permalink
WIRED 2026-05-07-3

5,000 Vibe-Coded Apps Are Leaking on the Open Web — and the S3 Analogy Misses the Legal Novelty

RedAccess found 5,000-plus exposed apps on the four leading vibe-coding platforms with around 2,000 leaking real PHI, customer chat logs, and strategy decks. The S3 analogy is reaching for the right pattern but missing the legal twist: AWS could credibly say it didn't write your bucket policy. Lovable, Replit, and Base44 wrote the auth logic that doesn't exist. The first court that holds a code-generation platform partially liable for a generated vulnerability resets the entire industry's product roadmap overnight.

# tags
vibe-codingai-coding-toolsai-cybersecurityai-vendor-governanceshadow-itdata-privacyliability-ambiguityenterprise-ai-adoptionreplitlovableai-securitypilot-to-scaleai-1.0-defensibilitywiredresponsible-disclosure
◆ entities
LovableReplitBase44NetlifyRedAccessDor ZviAmjad MasadWixWIREDAndy GreenbergJoel MargolisBank of AmericaCostcoFedExTrader Joe'sMcDonald'sAmazon S3
→ threads
vibe-coding-governanceai-1.0-defensibilitypilot-to-scaleai-vendor-liability
⟷ links
2026-04-04-22026-04-01-12026-03-08-22026-03-09-32026-04-01-32026-05-01-w12026-03-13-w12026-04-17-22026-05-01-12026-05-01-22026-05-01-32026-05-04-22026-05-05-12026-05-06-3
permalink
Citadel Securities 2026-04-12-1

Citadel Securities: S-Curve Diffusion, Compute Cost Ceiling, and the Engels' Pause Blind Spot

Citadel's rebuttal to the AI displacement panic is empirically airtight for 2026: unemployment at 4.28%, software postings up 11%, $650B in committed AI capex creating an inflationary boom before any deflationary displacement. The compute cost ceiling argument is structurally novel: rising AI adoption drives up compute costs, creating an endogenous brake on substitution. But the scariest omission is distributional: BofA data already shows profits gaining ground versus wages. GDP can grow while median incomes don't, and that's the pattern that breaks democracies.

# tags
ai-economicsai-labor-displacementmacroai-1.0-defensibilitysaas-marginsreliabilityenergy-geopolitics
◆ entities
Citadel SecuritiesFrank FlightBank of AmericaRobert Allen
→ threads
ai-economicsai-labor-displacement
⟷ links
2026-03-18-22026-03-20-w12026-03-31-12026-03-10-22026-03-31-m12026-03-28-32026-04-03-w22026-03-20-w22026-03-20-w32026-04-08-12026-04-11-1
permalink
David Oks (Substack) 2026-03-15-2

Why ATMs Didn't Kill Bank Teller Jobs, but the iPhone Did

Task automation within existing paradigms preserves labor; paradigm replacement eliminates it. ATM teller employment collapsed post-2010, but not from ATMs: mobile banking made branches irrelevant, and the "technology doesn't kill jobs" parable died with them. The AI version of this distinction is already playing out at Klarna, but most displacement forecasts still model the drop-in remote worker, not the fully-automated firm.

# tags
ai-economicslabor-displacementcomplementarityparadigm-shiftautomation
◆ entities
KlarnaCitibankBank of AmericaApple
→ threads
ai-economicspilot-to-scaleagentic-ai-viability
permalink