Fortify - BETA DASH x Lovable
4th edition of the BETA DASH hackathon, in collaboration with Lovable. Built a security scanner designed for non-technical founders shipping apps with AI tools like Lovable.
Highlights
- Identified a gap in the market: 45% of AI-generated code contains security vulnerabilities (Veracode, 2025), yet existing security tools assume the user can read code. Non-technical founders can’t.
- Built a full prototype in 2.5 hours that translates vulnerabilities into Layman’s terms with real-world analogies (“Your database has an unlocked back door”) and business impact breakdowns (GDPR risk, compliance blockers).
- Designed a closed-loop fix workflow: each vulnerability generates a prompt the user pastes right back into Lovable to resolve the issue.
- Additional features include a Launch Readiness Checklist and shareable security badge.
Tech Stack
- Lovable — Frontend generation and iteration
- React + TypeScript + Tailwind — App framework
- Plus Jakarta Sans + JetBrains Mono — Typography
- Lucide React — Icons
Notes
- The biggest decision was reframing from “developer security tool” to “founder security tool” early on. Every design choice after that became obvious.
- Hardest part was fighting Lovable’s defaults. Took 30+ iterations to land on a design system that felt intentional rather than vibecoded.
- Scope discipline mattered more than features. Cut a lot of ideas to keep the core flow tight.
- Could be interesting to build it with with a real GitHub API + LLM to make the scans functional.