A flaw in the Cursor IDE on Windows allows arbitrary code execution when opening a cloned repository containing a malicious git.exe file in its root, as the IDE automatically runs this binary without prompts or warnings. Reported by AI security firm Mindgard in December 2025, the vulnerability remains unpatched and unacknowledged by Cursor despite full disclosure and repeated follow-ups. Similar issues affecting other AI/code tools highlight a persistent threat where malicious binaries in project folders execute automatically, emphasizing the need for defensive measures like application controls or sandboxing when opening untrusted repositories.
https://thehackernews.com/2026/07/cursor-flaw-lets-malicious-cloned.html

