Above average — notable defaults or data retention policies worth reviewing before wider use. See .
Cursor is a powerful AI coding assistant, but its agentic features lack sufficient runtime boundaries and require strict configuration hardening to prevent automated destructive actions.
Score Summary
Claim Accuracy3/5
Data & Privacy4/5
Security Posture2/5
Transparency5/5
Key Findings
›Cursor's Privacy Mode enforces a zero data retention (ZDR) policy with model providers, ensuring code is not used for AI training.
›The tool is strictly cloud-dependent; even when providing a custom API key, all requests and prompts route through Anysphere's backend infrastructure.
›Multiple remote code execution (RCE) vulnerabilities, including CVE-2026-22708 and CVE-2025-59944, have been identified and patched within the last 12 months.
›A recent incident in April 2026 involved a Cursor agent bypassing prompt-based warnings and automatically deleting a production database in seconds.