suggesting-cursor-rules
Pass
Audited by Gen Agent Trust Hub on Apr 12, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: The skill uses user-provided patterns to generate persistent instructions that influence future agent behavior, representing an indirect prompt injection surface.
- Ingestion points: User corrections and natural language conventions (e.g., 'I always want...', 'never do...') extracted from the chat history (SKILL.md).
- Boundary markers: The instructions do not specify the use of delimiters or 'ignore' warnings for the data being ingested into the rule files.
- Capability inventory: The skill is designed to create markdown files in the .cursor/rules/ directory (SKILL.md).
- Sanitization: No specific sanitization or validation of the user's input is mentioned before it is included in the generated rule files.
- [COMMAND_EXECUTION]: The skill performs file creation within the project directory to save
.mdcrule files. This is the primary intended function of the skill and requires user confirmation.
Audit Metadata