cursor-agent

The Cursor CLI agent skill presents a coherent set of developer-oriented workflows around installation, authentication, session management, and automation. However, the primary installation method (curl | bash from an external site) constitutes a significant supply-chain risk and triggers mandatory scrutiny. This unverifiable binary footprint elevates security risk to a high level, particularly since credentials can be supplied via environment variables and may be exposed in logs or process listings if not properly protected. If the install path is replaced with verifiable, signed binaries from official registries or checksum-validated installers, and credential handling is clearly documented with secure best practices (masked logs, ephemeral keys, secure storage), the overall risk would decrease to a more acceptable level. At present, the skill is best classified as Suspicious due to the combination of unverifiable binary installation and potential credential exposure pathways, with a non-negligible chance of more severe risk if logs or process data are mishandled in practice.