Question
A teammate is debugging a flaky payment webhook and pastes the full failing request body into a chat-based AI assistant to ask why signature verification fails. The body includes a live Stripe webhook secret prefix, a customer's email, and the last4 of a card. The assistant gives a useful answer, so the teammate adds it to the team's shared 'prompt cookbook' so others can do the same. What's wrong here, and what concrete workflow would you put in its place?
Treat the AI’s output as a draft to verify, not an answer to trust. Name the specific flaw and the input that triggers it, say how you’d catch it — tests, edge cases, reading critically — and how you’d re-prompt or decompose to get it right.
Vibe coding: describe the solution in plain language (or narrate it) and the coach grades your approach. Generating runnable code from your description is coming next.