I'm wondering if it's risky for someone without technical expertise, like myself, to create a website that handles personal data with the help of ChatGPT. I built a site to streamline my business operations, and it works great! However, I'm hesitant to invite clients because I'm aware of several security vulnerabilities, such as unsanitized innerHTML and storing JWT tokens in localStorage. ChatGPT provided me with a security improvement plan, but can I really trust that? My client base is small (around 300 people), and I'm not promoting the site outside of this group; it's purely for my existing clients.
5 Answers
Honestly, I wouldn't depend solely on ChatGPT for security. If it's sensitive data, it's crucial to consult with security professionals or at least use open-source tools to check for vulnerabilities like the top 10 OWASP risks.
Don't overlook the fact that even seemingly minor security issues can lead to big problems. Always better to be safe than sorry!
You need to know the code at least a little. AI can assist, but it won't make you a full stack developer. A lack of experience can really show, especially in security.
The level of risk totally depends on the kind of data you're handling. If it's just something trivial, that's one thing. But if you're collecting sensitive info, you really need robust security measures in place.
Right! A security audit might be worth the investment to make sure everything is safe.
It's definitely a risk, even for those with technical backgrounds. A website can be compromised in many ways, so you need to be cautious.
Exactly! Just trusting AI-generated advice without verification can lead to serious issues.
Exactly, without a proper security review, you might be inviting trouble.