Your AI token disasters,
finally celebrated.

Share the prompt loops, the runaway agents, the $200 overnight bills.
Vote the best disasters up. Feel less alone.

Sign in & submit your story How it works
Security Clear filter
  1. 590
    Security Fiction

    Left my OpenAI key in a public GitHub repo for 11 minutes. That was enough.

    Classic rookie mistake, I know. I KNOW. I was pushing a quick prototype to GitHub to share with a friend. I hardcoded my OpenAI API key in a config file. I realized my mistake abo…

    Frank Kim Mar 02, 2026 Comments
  2. 433
    Security Fiction

    Built a "prompt injection proof" system. A user broke it in 20 minutes with a grocery list.

    I built an internal tool that let employees query our HR policy documents using an LLM. I was very proud of my security. I had: - A system prompt explicitly telling the model to o…

    Jack LeBlanc Mar 03, 2026 Comments