use-cursor
Manage Cursor CLI tasks via tmux with security hardening
Install via CLI (Recommended)
clawhub install openclaw/skills/skills/brucezhu888/use-cursorUse Cursor - OpenClaw + Cursor CLI Integration
Enable OpenClaw to execute Cursor CLI for various software engineering tasks, supporting interactive mode, background tasks, CI/CD, and more.
🔒 Security Notes
Before installing, understand these security implications:
What This Skill Does
- ✅ Manages Cursor CLI tasks via tmux (stated purpose)
- ✅ Reads
~/.cursor/cli-config.jsonto check auth status (email redacted in output) - ✅ Captures tmux pane output (may contain workspace code/data)
- ✅ All shell arguments are escaped to prevent injection
- ✅ Does not download remote code at install time
Privacy Considerations
| Data Access | Purpose | Protection |
|---|---|---|
~/.cursor/cli-config.json | Check auth status | Email redacted (shows ***@domain.com) |
~/.cursor/credentials | Check auth status | Not read, only existence checked |
$CURSOR_API_KEY | Optional auth | Not logged or stored |
$PATH, $HOME, etc. | Inherited by child processes | Not modified or logged |
| tmux output | Return task results | May contain workspace data |
⚠️ Critical: tmux Pane Execution Risk
This skill sends user-provided strings into tmux panes via tmux send-keys.
How it works:
- Script creates tmux session
- Runs
agent --print --trust 'TASK'in the pane - Captures pane output and returns to agent
Risk: If the pane is running a shell, any text sent via send-keys will be executed. While we escape arguments at the JavaScript level, special characters/control sequences could still affect the shell.
Mitigation:
- Use in isolated environments (container/VM) for untrusted tasks
- Don't run on production machines with live secrets
- Review task strings before sending
Recommendations
| Environment | Recommendation |
|---|---|
| Personal dev machine | ✅ Safe for normal projects |
| Open source work | ✅ Safe |
| Corporate environment | ⚠️ Review with security team first |
| Production server | ❌ Not recommended |
| Machine with high-value secrets | ❌ Use isolated container/VM |
Security Features (v1.0.0+)
- ✓ Shell argument escaping via single-quote method (prevents injection)
- ✓ tmux literal mode (
-lflag) for all send-keys commands - ✓ Email redaction (
***@domain.com) - ✓ API key/token redaction in output
- ✓ No autonomous execution (
always: false) - ✓ No remote code download
- ✓ Explicit permissions declared in manifest
- ✓ Isolated mode with minimal environment (hardcoded PATH)
🎯 Use Cases
| Scenario | Recommended Mode | Description |
|---|---|---|
| Quick tasks | Interactive | Direct agent "task description" |
| Long-running coding | Background | tmux-managed, no timeout |
| CI/CD automation | Non-interactive | agent -p + JSON output |
| Code review | Interactive/Background | With context analysis |
| Large refactoring | Background | Interruptible, resumable |
Metadata
Not sure this is the right skill?
Describe what you want to build — we'll match you to the best skill from 16,000+ options.
Find the right skillPaste this into your clawhub.json to enable this plugin.
{
"plugins": {
"official-brucezhu888-use-cursor": {
"enabled": true,
"auto_update": true
}
}
}Related Skills
plan-do-check-act
PDCA workflow automation with session binding and progress recovery. Requires Python 3.6 and Git (optional).
Use Dingding
Skill by brucezhu888
feishu-file-upload
Upload and send local files to Feishu chats. Requires Feishu app credentials (app_id/app_secret) in ~/.openclaw/openclaw.json. Use when user asks to send/share/upload files (CSV, PDF, Excel, images, ZIP) to Feishu. Supports chat_id (groups), open_id/user_id (users), and email recipients.
Dingtalk Workspace
Skill by brucezhu888