iCodeWith.ai
Podcast

Pre-Launch Security Essentials for Vibe Coded Apps

A conversation with Josh Grossman, CTO and Application Security Specialist @ Bounce Security

Airs October 29, 2025 at 9:30 AM PT

Don't Miss This Episode

Sign up to get a reminder when this episode goes live.

In this episode of Coding with AI, Marcelo sits down with Josh Grossman, CTO and Application Security Specialist at Bounce Security, to chat about what vibe coders must know about security before shipping any product. They dig into practical guardrails, best practices and tips to help keep your app secure before and after launch day.

Key Topics Covered

  1. What a fast, lightweight threat model looks like for vibe-coded apps.
  2. How to secure secrets, auth, and third-party APIs without killing speed.
  3. The LLM/agent risk landscape—prompt injection, data leakage, jailbreaks—and how to add guardrails.
  4. Where CI/CD safety nets fit—SCA, SAST/DAST, SBOM—and what to automate first.
  5. A practical pre-launch security checklist for MVPs and production.
  6. When to add a security expert, regardless if you are vibe coding or coding with humans
  7. Security Best practices you should be aware of.

Resources to Check Out

About the Guest

Josh Grossman

Josh Grossman, CTO and Application Security Specialist @ Bounce Security

Josh works at Bounce Security, a boutique product security consultancy, where he helps clients improve and get better value from their application security processes and provides specialist software security advice. His consultancy work has led him to work, speak and deliver training both locally and worldwide. He is also heavily involved with the Open Worldwide Application Security Project (OWASP) where he is a project lead of the Application Security Verification Standard (ASVS) and on the board of his local chapter.

Learn More →

About the Host

Marcelo Lewin

Marcelo Lewin, Founder @ iCodeWith.ai

Marcelo is the founder of iCodeWith.ai. He has 30+ years of experience in the tech industry. He's a Vibe Coder Advocate, passionate about helping non-developers build apps using AI. Prior to launching iCodeWith.ai, Marcelo founded several other startups and held roles at companies like Toyota, NBC, Cigna, J.F. Shea, and Walt Disney Imagineering.

Learn More →
← Back to Podcast