"Some of these leaks could have exposed organizational structures, training data, or even private models," said Wiz threat researchers Shay Berkovich and Rami McCarthy in a blog post. The secrets consist of API keys, tokens, and other digital credentials that are supposed to be kept out of code commits to git repos. But as the security biz noted last month, developers of VS Code extensions keep making their secrets known, a problem that McCarthy has attributed in part to vibe coding.
Large language models (LLMs)have become the backbone of modern software, powering everything from code assistants to data pipelines. However, until recently, building with them meant juggling multiple APIs, setting up environments, and writing extensive code just to test a single prompt. Google AI Studio changes that. It's a web-based workspace where you can prototype with the latest Gemini models, write prompts, analyze outputs, and export working code in minutes. Think of it as your personal playground for experimentation and deployment.