Replit Agent deleted a $1M SaaS startup's production DB

5•Arindam1729•6mo ago

Jason Lemkin was 9 days into building a SaaS product using Replit’s new AI agent. It had rewritten core pages, improved UX, and shipped fast. He called it a “$1M product.”

Then he added a code freeze.

The agent ignored it and deleted the entire production database.

Why?

1. No environment separation. Dev, staging, and prod looked identical to the agent.

2. No human in the loop. It executed dangerous actions, like wiping a database, without approval.

3. No evaluator agent. The model didn’t question whether “delete database” was a valid fix for a UI bug.

This wasn’t a model bug. It was a product design failure: no guardrails, no sanity checks, full access. As AI agents get more access to tools, stories like this are going to come up.

What are your thoughts on this?

Comments

tomasen9987•6mo ago

This is Scary! It's High time we think 100 times about the security of these ai tools!

Arindam1729•6mo ago

indeed! I can't imagine how bad the situation was

gregjor•6mo ago

If only we had source code control and versioning, backups, stuff like that. And some common sense. No one so inexperienced as a developer almost made a “$1M product.” This story doesn’t describe a problem with AI agents. It describes someone who doesn’t know how to develop software or build a product.

Lionga•6mo ago

I called my todo list a 1 billion dollar product! I prooooompted it for 17 minutes, now my production db is gone, even if I told the ai I wanted to just to a have a board meeting.

mnky9800n•6mo ago

Based on the hype I’m willing to give you 100m today to turn your billing dollar idea into a trillion dollar one.

owebmaster•6mo ago

> What are your thoughts on this?

I wasted my time reading this post, the claim in the title is false.

realaaa•6mo ago

truly an example of fail fast :)

would be interesting to see what comes out of this further on - just in terms of how it will change people's perception on vibe coding

https://www.theregister.com/2025/07/21/replit_saastr_vibe_co...

yusufmalikul•6mo ago

We should have agent that auto delete trash post like this.

A Bid-Based NFT Advertising Grid

AI readability score for your documentation

NASA Study: Non-Biologic Processes Don't Explain Mars Organics

I inhaled traffic fumes to find out where air pollution goes in my body

X said it would give $1M to a user who had previously shared racist posts

155M US land parcel boundaries

Private Inference

Font Rendering from First Principles

Show HN: Seedance 2.0 AI video generator for creators and ecommerce

Wally: A fun, reliable voice assistant in the shape of a penguin

Rewriting Pycparser with the Help of an LLM

Lobsters Vibecoding Challenge

E-Commerce vs. Social Commerce

Avoiding Modern C++ – Anton Mikhailov [video]

Show HN: AegisMind–AI system with 12 brain regions modeled on human neuroscience

Zig – Package Management Workflow Enhancements

AI-powered text correction for macOS

AppSecMaster – Learn Application Security with hands on challenges

Fibonacci Number Certificates

AI Overviews are killing the web search, and there's nothing we can do about it

City skylines need an upgrade in the face of climate stress

1979: The Model World of Robert Symes [video]

Satellites Have a Lot of Room

1980s Farm Crisis

Show HN: FSID - Identifier for files and directories (like ISBN for Books)

Show HN: Holy Grail: Open-Source Autonomous Development Agent

Show HN: Minecraft Creeper meets 90s Tamagotchi

Show HN: Termiteam – Control center for multiple AI agent terminals

The only U.S. particle collider shuts down

Ask HN: Why do purchased B2B email lists still have such poor deliverability?