Harshal Jain

30 security rules for AI VIBE CODING : 1. Set session expiration (JWT max 7 days + refresh rotation) 2. Never use AI-built auth. Use Clerk, Supabase Auth, or Auth0 3. Never paste API keys into AI chats. Use process.env 4. .gitignore is your first file in every project, not the last 5. Rotate secrets every 90 days minimum 6. Verify every package the AI suggests actually exists before installing 7. Always ask for newer, more secure package versions 8. Run npm audit fix right after building 9. Sanitize every input. Use parameterized queries always 10. Enable Row-Level Security from day one 11. Remove all console.log statements before shipping 12. CORS should only allow your production domain. Never wildcard 13. Validate all redirect URLs against an allow-list 14. Apply auth + rate limits to every endpoint, including mobile APIs 15. Rate limit everything from day one. 100 req/hour per IP is a start 16. Password reset routes get their own strict limit (3 per email/hour) 17. Cap AI API costs in your dashboard AND in your code 18. Add DDoS protection via Cloudflare or Vercel edge config 19. Lock down storage buckets. Users should only access their own files 20. Limit upload sizes and validate file type by signature, not extension 21. Verify webhook signatures before processing any payment data 22. Use Resend or SendGrid with proper SPF/DKIM records 23. Check permissions server-side. UI-level checks are not security 24. Ask the AI to act as a security engineer and review your code 25. Ask the AI to try and hack your app. It will find things you won't 26. Log critical actions: deletions, role changes, payments, exports 27. Build a real account deletion flow. GDPR fines are not fun 28. Automate backups and test restoration. An untested backup is nothing 29. Keep test and production environments completely separate 30. Never let test webhooks touch real systems Ship fast. But ship secure.

Anthropic just pulled Claude Code from the Pro plan. Pro users wanting it need Max now. $100/month minimum. 5x jump. I'm on Max 20x so I'm fine. Flagging for anyone on Pro who's about to find out. No announcement. Just a pricing page edit.

I found a Public list of 1500+ Startups that just raised money and are about to hire ⚡️ Excel Sheet: #gid=0" target="_blank" rel="nofollow noopener">docs.google.com/spreadsheets/d… UI: prepdb.fyi/startups Kudos to person who built this 🔥🔥

Introducing Claude Design by Anthropic Labs: make prototypes, slides, and one-pagers by talking to Claude. Powered by Claude Opus 4.7, our most capable vision model. Available in research preview on the Pro, Max, Team, and Enterprise plans, rolling out throughout the day.

@nainasachdev11 @ethmumbai @base Damn congrats 🎉

WE WON THREE TRACKS at @ethmumbai this weekend. Still processing it!! 42 hours, no sleep and a crazy team that kept building. Penumbra by crwdstrk ended up winning: • Main Track - Best Overall Project • Main Track - Best Privacy Project • @base Track - Best Privacy Project Yayayyyayyyay Couldn’t have asked for a better team @0xsoydev @KulsumWajiha @tanzil_sayed22 And Massive credit to the ETHMumbai team for pulling off such a smooth and incredible hackathon🔥

@HarshalJain001 Alright, I'll handle the MVP website for you.

@harryyy_cs I have proposed my idea in your dm please check it out

Only for limited projects

There are 8.1 BILLION people on Earth. Most haven't used Al. A few are playing with it. A tiny fraction are paying for it. And an almost invisible dot is building with it. That dot will own the next decade. Which dot are you? Follow for unfair Al leverage. Cred:@ericosiu #AI

Unlocking your wallet's potential just got a major upgrade! 💳✨ With CredPass, even the unbanked can flex their crypto cred. Say goodbye to traditional credit hassles and hello to instant financial recognition! Dev:@vyqno devfolio.co/projects/credp…

Register now and apply to be a part of ETHMumbai 2026 via @devfolio ethmumbai2026.devfolio.co/?ref=aa8c4d0d88 @ethmumbai

@ethmumbai @ethmumbai guys its been 2 days, no one is responding, I didn't even get the ticket id Please check into it harshaljaincs@gmail.com shreyasachowdary@gmail.com

Regular tickets are now available at 50% OFF! Grab 'em while they are hot 🔥 Join the biggest @ethereum conf in Mumbai, including 50 speakers & 500 attendees, on 12th March 2026.