Quickstart / Cursor

SkillSafe + Cursor

Cursor's agent reads skill definitions from the Cursor config directory. SkillSafe skills install alongside your Cursor rules and are discovered automatically.

Cursor site · Skills dir: ~/.cursor/skills/

1. Set up SkillSafe

Paste this into Cursor. The agent reads the skill definition and wires up the REST API for you — no CLI required, no dependencies.

Create skillsafe skill from https://skillsafe.ai/skill.md

2. Scan before you install

Every shared skill on SkillSafe is already scanned, but you can re-verify any public GitHub repo yourself. No signup:

curl -X POST https://api.skillsafe.ai/v1/scan/github \
  -H "Content-Type: application/json" \
  -d '{"url":"https://github.com/owner/repo"}'

You get findings across code execution, credential theft, prompt injection, network exfil, and supply-chain patterns. See the full ruleset →

3. Install into Cursor

Skills for Cursor live at ~/.cursor/skills/. Download the archive and unpack it directly:

mkdir -p ~/.cursor/skills/
curl -L "https://api.skillsafe.ai/v1/skills/@ns/name/download/1.0.0" \
  | tar -xz -C ~/.cursor/skills/

Verify the skill landed:

ls ~/.cursor/skills/

4. Use the skill

Restart your Cursor session so the skill loader sees the new directory, then reference it in a prompt. Example:

Use the code-review skill to review my staged changes.

Other tools

Claude Code

~/.claude/skills/

Windsurf

~/.windsurf/skills/

Codex

~/.agents/skills/

Next steps

Scan a skill

Free, no signup. Paste any GitHub URL and see findings in seconds.

Browse verified skills

Community-submitted skills with dual-side verification.

Full API reference

Every endpoint, every parameter, every response shape.