Platform Guides

Is Lovable Safe? Security Risks and the Checklist Before You Ship

Is Lovable safe to ship a real app on? Yes — but its Supabase defaults can leak data. The RLS risks, the CVE-2025-48757 facts, and a pre-ship checklist.

Barret8 min read

You built something real on Lovable. Maybe it has paying users now, or it's about to. And somewhere between "this is amazing" and "wait, is this actually safe?" you started to worry: is Lovable safe to ship a real app on, or did the AI quietly leave your users' data sitting in the open?

It's a fair question, and you're not alone in asking it. Lovable is closing in on 8 million users, with around 100,000 new products created on the platform every single day. That's a lot of real apps holding real data, built by people who, by Lovable's own numbers, are mostly non-developers.

Here's the short version, and then the detail. Lovable the tool is not the problem. The risk lives in the defaults it generates and in what those defaults leave exposed once your app is live. This post walks through exactly where the gaps tend to be, what the one documented Lovable incident actually showed, and a checklist you can run before you ship.

⚡ TL;DR

  • Lovable is safe to build on. The risk is the backend it wires up for you — usually Supabase — and whether its tables have proper Row Level Security (RLS = a per-user filter on every database query).
  • The most common Lovable gap is missing or "allow everyone" RLS. A 2025 study found 170 of 1,645 Lovable apps (about 10.3%) leaking real user data this way — the basis for CVE-2025-48757.
  • Your Supabase anon key being public is not a bug. It's meant to ship in the browser. The real fix is RLS policies, not rotating the key.

Is Lovable safe? The short answer

Yes, with a caveat that matters.

Lovable is a legitimate, well-funded platform, and the code it generates is not malicious or broken. When founders ask "is Lovable safe," they're usually picturing the wrong threat. The danger isn't that Lovable does something sneaky. It's that Lovable, like every AI builder, optimizes for making the feature work in the preview — not for locking down who can access your data once it's deployed.

Those are different jobs. An app can look finished, work perfectly in the demo, and still leave its database wide open. The security gap is invisible right up until someone goes looking for it.

So the honest answer is: Lovable is safe to build on, but the app it hands you is not automatically safe to ship. The difference is a handful of settings the AI doesn't reliably get right, and the good news is you can check and fix every one of them.

The real risks when you build with Lovable

Lovable uses Supabase as its backend for most apps. Supabase is excellent — the default backend across the vibe-coding world — but it ships with a permission model your AI has to configure correctly. Here's where it tends to go wrong.

Missing or permissive RLS (the big one)

This is the central risk for any Lovable app, so it gets the most space.

Supabase apps talk to the database directly from the browser. There's usually no backend server in the middle checking "is this person allowed to see this?" Instead, the database itself is the gatekeeper, and the feature that enforces the rules is RLS (Row Level Security) — think of it as an automatic WHERE clause the database adds to every query, deciding which rows each user can see.

When RLS is turned off, or when a policy is set to USING (true) (which means "this rule matches every row" — effectively no protection), any visitor can pull the entire table. Not just their own data. Everyone's.

Why does this happen so often on Lovable? Because a table with RLS switched off works flawlessly in the preview. You can read and write, the app looks done, nothing complains. The hole only shows up when an outsider queries your public API directly. We go deep on this in Supabase RLS explained.

Exposed secret keys

Lovable apps frequently connect to other services — Stripe, OpenAI, email providers. The risk is when a secret key ends up baked into the frontend code that ships to the browser. There's an important distinction here:

  • A Supabase anon key is meant to be public. So is a Stripe publishable key (pk_live_...). These are not emergencies.
  • A Supabase service_role key, a Stripe secret key (sk_live_...), or an OpenAI key in the frontend is an emergency. The service_role key in particular bypasses RLS entirely — anyone who finds it owns your whole database.

If your Lovable app calls a paid API directly from the browser, there's a real chance the secret is sitting in your JavaScript bundle where anyone can read it. More on the difference in service_role vs anon key.

Open storage buckets

If your app lets users upload files — profile photos, documents, anything — Lovable likely set up a Supabase storage bucket. Buckets have their own access rules, separate from your tables. A bucket left public means the files inside can be listed and downloaded by anyone with the URL pattern, even if your tables are locked down. This is a common blind spot because storage feels like a different system from the database. See Supabase storage bucket security.

Missing security headers

AI builders rarely set security response headers (the instructions that tell a browser how to behave defensively). Across a December 2025 study of 15 AI-built apps spanning several tools, zero set security headers and zero implemented CSRF (Cross-Site Request Forgery) protection. Lovable apps inherit the same tendency. These gaps are lower-severity than an open database, but they're worth closing before launch.

What CVE-2025-48757 actually showed

This is the one documented Lovable incident, and it's worth understanding precisely because it's easy to misread.

In May 2025, security researcher Matt Palmer disclosed CVE-2025-48757 — the first published CVE for this entire category of vulnerability. A scan of 1,645 Lovable-built apps found 170 of them (about 10.3%) leaking real user data across 303 endpoints. The cause was exactly what's described above: tables with missing RLS, or RLS set to USING (true), queried through the public anon key.

Two things to take from this. First, the leak rate is meaningful but not universal — roughly one in ten apps, not all of them. Your app may well be fine; the point is to check rather than assume. Second, and this is the part people get wrong: the anon key being public is not the bug. The data leaked because the tables had no real policy guarding them. The key was just the doorknob anyone can grab. The missing lock was the problem.

It's also not a "Lovable is broken" story. The same missing-RLS pattern has since shown up in apps built on Bolt, v0, Cursor, and Replit. It's a default the entire vibe-coding ecosystem inherits from how browser-to-database apps work. We break the incident down fully in the CVE-2025-48757 breakdown.

How to check your Lovable app

You can sanity-check the important stuff in about ten minutes.

  1. Open your Supabase dashboard → Authentication → Policies (or Database → Tables). Every table holding user data should show RLS enabled. A table with real data and "RLS disabled" is your most likely leak.
  2. Read the policy, not just the toggle. A table can have RLS on and still leak if the policy is USING (true). That looks protected in the dashboard but passes every row. See the USING(true) trap.
  3. Hunt for secret keys in your frontend. In your browser, open developer tools and search your loaded JavaScript for service_role, sk_live, and any AI provider key prefix. None of those should appear. (An anon key showing up is expected and fine.)
  4. Check your storage buckets. In Supabase → Storage, confirm buckets holding private files are not set to public.
  5. Test as an anonymous user. The most honest check: query your public API with only the anon key and see what comes back. If you can pull other people's rows, so can anyone.

Not sure if your Lovable app has this exact issue?

Run a free, read-only scan of your live app — no install, results in under a minute.

Scan my app free →

The pre-ship checklist for Lovable

Run through this before you put a real app in front of real users.

  • RLS enabled on every table that holds user data — no exceptions.
  • Policies use real conditions, like auth.uid() = user_id, never USING (true).
  • No secret keys in the frontend: no service_role, no sk_live_..., no raw OpenAI/Anthropic keys in client code. Route those through a server function.
  • Storage buckets locked down: private files in private buckets, with access policies.
  • Tested as a stranger: you've queried your live endpoints as an anonymous user and confirmed you can't read other people's data.
  • Security headers and CSRF protection added where your stack supports them.

A useful trick: paste a prompt back into Lovable like "Enable RLS on every table that stores user data and add policies so each user can only read and write rows where user_id equals their auth.uid(). Do not use USING(true). Make sure no secret keys are exposed in client code."

FAQ

Is Lovable secure enough for a production app with paying users?

Yes, provided you configure the backend correctly. Lovable can absolutely power a production app, but you're responsible for confirming RLS is enabled with real policies, no secret keys ship in the browser, and storage buckets are locked down. The platform doesn't guarantee these by default — you verify them before launch.

Is my Lovable app leaking data right now?

Possibly, if it has tables without proper RLS. The CVE-2025-48757 study found about one in ten Lovable apps leaking this way, so it's common but not guaranteed. The only way to know is to check: look at your table policies and test your live endpoints as an anonymous user, or run a scan that does it for you.

Do I need to rotate my Supabase anon key?

No. The anon key is public by design — it's meant to live in your frontend, and Supabase built its whole permission model around that. Rotating it changes nothing about your security. The key you must never expose is the service_role key.

The bottom line

Lovable is safe to build on, and the platform isn't doing anything wrong. The risk is the same one every AI builder carries: it optimizes for "it works," not "it's locked down," and the gaps it leaves — missing RLS, exposed secret keys, open buckets — are invisible until someone goes looking. An attacker can find an unprotected table in minutes by reading your network traffic. The job is to find it first, and to keep checking, because Lovable ships new code (and potentially new gaps) every time you add a feature.

Find your gaps before an attacker does.

Is My Site Hackable? scans your deployed app for the exact issues in this article — exposed keys, missing RLS, open buckets — and tells you what's real and what's a false alarm.

Run a free scan →

Keep reading

CornerstoneVibe Coding Security11 min read

Vibe Coding Security: The Complete Guide

Vibe coding security, explained for non-developers. Why AI-built apps ship with leaks, the main risk classes, and how to check your own app in minutes.

CornerstoneSupabase Security11 min read

Supabase Security for AI-Built Apps: The Complete Guide

A plain-English guide to Supabase security for AI-built apps. Learn the real risks — RLS, service keys, storage buckets — and how to check your own app today.

8 min read

Is Bolt Safe? Security Risks and the Checklist Before You Ship

Is Bolt safe to ship a real app on? The builder is fine — its Supabase defaults can leak data. The RLS risks, exposed-key traps, and a pre-ship checklist.

← More on Platform Guides