🕺 Vibe Coding is a Dangerous Fantasy

and the best + most organized React repos

Author

Journals GG
March 24, 2025

Hey there.

Here’s everything you need to know this week in the world of full-stack development.

Programming

🤔 Garry Tan says YC startups are launching with 95% AI-written code
Y Combinator CEO Garry Tan left developers shocked when he claimed about 25% of their latest startups use AI to write 95% or more of their code. That’s not a typo.

Translation? Startups now need way fewer engineers, meaning they can raise less money and still build fast.

For founders, that's a game-changer. But it could also shake up the whole startup hiring scene. This blog unpacks Garry’s claims, is this really realistic and what impacts does this likely have on the market?

🤯 Harvard study shows Open source has an economic value of 8.8 trillion dollars
Open source software packs a massive $8.8 trillion punch, according to Harvard Business School, saving companies roughly 3.5 times what they'd otherwise spend on software. Even more wild, about 95% of that value comes from just 3,000 developers worldwide, and open-source code shows up in a staggering 96% of all codebases.

🕺 Vibe Coding is a Dangerous Fantasy
Last week, X lit up after a self-proclaimed “vibe coder” revealed his AI-built SaaS was falling apart, subscription checks were bypassed, APIs overloaded, and the database was glitching. He admitted, “I’m not technical,” and was struggling to fix it. This case highlights the hidden danger of vibe coding: when AI builds something that almost works, but the creator has no idea how to handle what comes next.

🏗️ Software Development Has Too Much Software In It
“Software has too much... software?” That’s the bold take one developer explores after years in the trenches, from hacking for fun to building bloated stacks in corporate land. He questions why companies keep reaching for heavyweight tools like React when simpler solutions would do, and digs into how complexity creeps in, not for users, but for the sake of hiring.

Front-End

⚠️ Next.js Middleware Exploit
A critical Next.js vulnerability (CVE-2025-29927) allows attackers to slip past middleware security by manipulating the x-middleware-subrequest header. It affects versions 11.1.4 through to recent unpatched releases, impacting auth, path rewrites, and security headers. Here’s what you need to know to mitigate it.

👍️ The best + most organized React repos
This Reddit thread is packed with top tier repos showcasing clean design patterns and advanced React hooks in action.

🏃‍♂️ The Frontend Treadmill
Marco Rogers argues that constantly rewriting frontends in pursuit of the next hot framework is a waste of time, and a trap. Instead, he makes a compelling case for mastering the tech you already use and getting back to web fundamentals. If you’re tired of hype-driven dev culture and want a smarter long game, this blog is for you.

More Tools & Stories

AI