Example VibeRaven Scan: Stripe Checkout App

Synthetic scan findings (illustrative)

• GAP-BILLING-02: webhook handler missing constructEvent signature verification.
• GAP-AUTH-01: billing API route lacks server auth guard.
• GAP-ENV-03: webhook secret missing from Vercel production env—manual step required.
• GAP-DB-01: subscriptions table RLS enabled without user policy.
• NEXT PROMPT names files, verification, and manual Stripe dashboard steps.

Is this a real VibeRaven customer scan?

No. All findings are synthetic. Run npx -y viberaven --agent-mode on your repo for real evidence.