Cursor agents should be restricted from access of files outside the project without permission

kirill_block · January 20, 2026, 8:03pm

I have commands set to auto run only in “sandbox” mode. Also I don’t remember allowing access to folders outside my opened projects. However, after I asked it to check the compilation errors and fix them, it started “Inspecting how other tests and the codebase handle these patterns:”. Firstly it checked the current project, but for some reason it resorted to grepping folder /User/<username>. I only noticed it because MacOS started asking for permissions to access random personal folders.

Basically cursor just started to search through personal data without permission

mzs · February 9, 2026, 2:47am

I would like to configure a blocklist or allowlist of folders outside the workspace to prevent read access to ~/.ssh, ~/.aws, ~/.azure, Downloads, etc.

You can get some mileage out of hooks to block commands based on regexes, but if some skill or web search convinces the agent to just write and run a python script that accesses the files directly, the hook’s not going to see that.

Topic		Replies	Views
Cursor IDE agent made changes outside of the open directory Bug Reports	2	123	December 13, 2025
Read files outside the project folder Bug Reports security	1	11	February 19, 2026
Cursor reads files on my local filesystem onside projects workspace Bug Reports context , privacy-mode , security	1	12	February 20, 2026
.cursorignore blocks file read and bash commands, but not the Grep tool Bug Reports sandbox , terminal , rules , security	2	16	February 25, 2026
.cursorignore ignored for command prompt functions Bug Reports terminal , rules , security	3	32	February 7, 2026

Cursor agents should be restricted from access of files outside the project without permission

Related topics