EN RU

Cursor Launches Security Review Beta: PR Vulnerability Scanner and Scheduled CVE Agents

Cursor

Tools official 1 src. ~1 min

Cursor launched Security Review (beta, April 30) for Teams and Enterprise plans with two agents: Security Reviewer scans pull requests for vulnerabilities and prompt injection attacks, leaving inline comments; Vulnerability Scanner runs scheduled scans for known CVEs, outdated dependencies, and misconfigurations with Slack reporting. A Team Marketplace update (May 1) lets admins distribute plugins without a connected repository.

Why it matters

Security-focused agents built into the IDE position Cursor as a security layer rather than just a productivity tool — differentiating from Copilot and Claude Code by targeting defensive security workflows directly inside the development environment.

Importance: 2/5

Notable product differentiation for a leading coding IDE, but beta stage.

ide coding-agent beta release safety

Sources

official Cursor Changelog — Security Review Beta, Team Marketplace