HADI MOUMENI

Fortify - BETA DASH x Lovable

4th edition of the BETA DASH hackathon, in collaboration with Lovable. Built a security scanner designed for non-technical founders shipping apps with AI tools like Lovable.

Highlights

  • Identified a gap in the market: 45% of AI-generated code contains security vulnerabilities (Veracode, 2025), yet existing security tools assume the user can read code. Non-technical founders can’t.
  • Built a full prototype in 2.5 hours that translates vulnerabilities into Layman’s terms with real-world analogies (“Your database has an unlocked back door”) and business impact breakdowns (GDPR risk, compliance blockers).
  • Designed a closed-loop fix workflow: each vulnerability generates a prompt the user pastes right back into Lovable to resolve the issue.
  • Additional features include a Launch Readiness Checklist and shareable security badge.

Tech Stack

  • Lovable — Frontend generation and iteration
  • React + TypeScript + Tailwind — App framework
  • Plus Jakarta Sans + JetBrains Mono — Typography
  • Lucide React — Icons

Notes

  • The biggest decision was reframing from “developer security tool” to “founder security tool” early on. Every design choice after that became obvious.
  • Hardest part was fighting Lovable’s defaults. Took 30+ iterations to land on a design system that felt intentional rather than vibecoded.
  • Scope discipline mattered more than features. Cut a lot of ideas to keep the core flow tight.
  • Could be interesting to build it with with a real GitHub API + LLM to make the scans functional.