O Promptbook substitui um pentest?

Não. Ele ajuda a encontrar sinais e organizar a revisão. Validação de impacto, cadeia de exploração e confirmação de correção ficam no Pentest Manual.

Por que o Pentest Manual não fica em checkout comum?

Porque escopo, autorização, ambiente e risco operacional precisam ser avaliados antes da proposta.

Antigravity 2.0, Gemini CLI, and Google AI Studio: fast agents need boundaries

Speed moved beyond the editor

Google Antigravity, Antigravity 2.0, Gemini CLI, Google AI Studio, and Firebase Studio all point in the same direction: the agent does not only want to complete a function. It wants to understand a task, edit a project, call tools, navigate context, and move an idea toward something executable.

For AI-built SaaS, that is powerful. It also means risk no longer lives only in the edited file. It lives in the permission set the agent received to read, write, execute, call APIs, touch environments, and publish.

The boundary that needs to exist

Production repository separated from playgrounds and prototypes.
Secrets never exposed in chat, prompts, screenshots, or example files.
Agent tools running with the least permission possible.
Destructive commands requiring human review.
Deploys gated by CI, tests, and rollback before real traffic.
Logs without prompts, tokens, personal data, or sensitive payloads.
Database and storage rules reviewed outside the generated interface.

The common AI-built app mistake

The app looks good, the flow seems to work, and the founder publishes. Then the hard parts appear: user A can see user B's data, the frontend unlocks premium access, the webhook does not verify signatures, admin is just a hidden route, upload does not check ownership, Firestore or Supabase rules allow too much.

A good agent increases production. It does not replace security boundaries.

Google AI Studio and Firebase Studio belong in the same map

When creation moves through prototypes, multimodal AI, generated backend, authentication, and assisted deploys, the review needs to connect everything: model, prompt, route, data rule, storage, paid plan, mobile, and logs. Validating only the screen is not enough.

Review without blocking creation

Use the agent to map the product: which routes exist, which data each route reads, which actions change money, which endpoints receive files, which tools can call the network, and which variables exist at runtime. Then manually review anything touching login, billing, customer data, and permissions.

Sources used

A fast agent is an advantage when it operates inside a boundary. Without a boundary, it only ships risk faster.

Speed moved beyond the editor

The boundary that needs to exist

Production repository separated from playgrounds and prototypes.
Secrets never exposed in chat, prompts, screenshots, or example files.
Agent tools running with the least permission possible.
Destructive commands requiring human review.
Deploys gated by CI, tests, and rollback before real traffic.
Logs without prompts, tokens, personal data, or sensitive payloads.
Database and storage rules reviewed outside the generated interface.

The common AI-built app mistake

A good agent increases production. It does not replace security boundaries.

Google AI Studio and Firebase Studio belong in the same map

Review without blocking creation

Sources used

A fast agent is an advantage when it operates inside a boundary. Without a boundary, it only ships risk faster.