> For the complete documentation index, see [llms.txt](https://ai-security-docs.akto.io/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://ai-security-docs.akto.io/akto-atlas-agentic-ai-security-for-employee-endpoints/endpoints-discovery-agents/cursor-hooks.md). # Cursor Hooks Akto Guardrails for Cursor provides comprehensive security monitoring and validation for both **chat interactions** and **MCP tool executions**. It intercepts all agent operations, validates against security policies, blocks risky behavior, and reports events to your Akto dashboard. ## Key Features * ✅ **Zero Installation** - No standalone apps or packages to install * ✅ **Comprehensive Coverage** - Monitors both chat prompts/responses and MCP requests/responses * ✅ **Transparent Integration** - Uses Cursor's native hook mechanism * ✅ **Real-time Protection** - Intercepts every interaction before execution * ✅ **Centralized Monitoring** - All events reported to Akto dashboard * ✅ **Flexible Deployment** - Supports both Argus and Atlas modes ## How It Works Cursor's hook system executes custom scripts at four critical points: ```mermaid sequenceDiagram autonumber participant User participant ChatHook as beforeSubmitPrompt Hook participant Agent as AI Agent participant ChatResponseHook as afterAgentResponse Hook participant MCPBeforeHook as beforeMCPExecution Hook participant MCP as MCP Server participant MCPAfterHook as afterMCPExecution Hook participant Akto as Akto Dashboard User->>ChatHook: User submits chat prompt Note over ChatHook: Validate guardrail policies alt Safe Prompt ChatHook->>Agent: Forward to AI ChatHook-->>Akto: Report event else Malicious ChatHook-->>User: Block ChatHook-->>Akto: Report security event end Agent->>ChatResponseHook: Agent response Note over ChatResponseHook: Validate response ChatResponseHook-->>Akto: Report event ChatResponseHook->>User: Response Agent->>MCPBeforeHook: MCP tool request Note over MCPBeforeHook: Validate tool parameters MCPBeforeHook->>MCP: Execute if safe MCPBeforeHook-->>Akto: Report event MCP->>MCPAfterHook: Tool response Note over MCPAfterHook: Validate response MCPAfterHook-->>Akto: Report event MCPAfterHook->>Agent: Response ``` **4 Hook Points:** 1. `beforeSubmitPrompt` - Validates chat prompts before sending to AI 2. `afterAgentResponse` - Validates AI responses before displaying 3. `beforeMCPExecution` - Validates MCP tool requests before execution 4. `afterMCPExecution` - Validates MCP tool responses ## File Structure ``` ~/.cursor/ ├── hooks/ │ └── akto/ │ ├── akto-validate-chat-prompt-wrapper.sh # Chat prompt wrapper │ ├── akto-validate-chat-prompt.py # Chat prompt validation │ ├── akto-validate-chat-response-wrapper.sh # Chat response wrapper │ ├── akto-validate-chat-response.py # Chat response validation │ ├── akto-validate-mcp-request-wrapper.sh # MCP request wrapper │ ├── akto-validate-mcp-request.py # MCP request validation │ ├── akto-validate-mcp-response-wrapper.sh # MCP response wrapper │ ├── akto-validate-mcp-response.py # MCP response validation │ └── akto_machine_id.py # Device ID utility ├── akto/ │ ├── chat-logs/ │ │ ├── akto-validate-chat-prompt.log │ │ └── akto-validate-chat-response.log │ └── mcp-logs/ │ ├── akto-validate-request.log │ └── akto-validate-response.log └── hooks.json # Hook configuration ``` **Key Files:** * **Wrapper scripts (`.sh`)**: Set environment variables, invoke Python scripts * ⚠️ **Contains `AKTO_DATA_INGESTION_URL` placeholder** - Must be replaced with your Akto instance URL * **Python scripts (`.py`)**: Core validation logic and Akto API communication * **`akto_machine_id.py`**: Generates unique device identifiers for Atlas mode * **`hooks.json`**: Links hooks to wrapper scripts ## Setup Guide ### Prerequisites * Cursor IDE (version 0.40+ with hooks support) * Akto instance URL * macOS, Linux, or Windows with bash/zsh ### Installation Steps {% stepper %} {% step %} **Create Directories** ```bash mkdir -p ~/.cursor/hooks/akto mkdir -p ~/.cursor/akto/chat-logs mkdir -p ~/.cursor/akto/mcp-logs ``` {% endstep %} {% step %} **Download Hook Scripts** ```bash # Base URL for downloading hooks HOOKS_BASE="https://raw.githubusercontent.com/akto-api-security/akto/master/apps/mcp-endpoint-shield/cursor-hooks" # Download chat validation hooks curl -o ~/.cursor/hooks/akto/akto-validate-chat-prompt-wrapper.sh \ "${HOOKS_BASE}/akto-validate-chat-prompt-wrapper.sh" curl -o ~/.cursor/hooks/akto/akto-validate-chat-prompt.py \ "${HOOKS_BASE}/akto-validate-chat-prompt.py" curl -o ~/.cursor/hooks/akto/akto-validate-chat-response-wrapper.sh \ "${HOOKS_BASE}/akto-validate-chat-response-wrapper.sh" curl -o ~/.cursor/hooks/akto/akto-validate-chat-response.py \ "${HOOKS_BASE}/akto-validate-chat-response.py" # Download MCP validation hooks curl -o ~/.cursor/hooks/akto/akto-validate-mcp-request-wrapper.sh \ "${HOOKS_BASE}/akto-validate-mcp-request-wrapper.sh" curl -o ~/.cursor/hooks/akto/akto-validate-mcp-request.py \ "${HOOKS_BASE}/akto-validate-mcp-request.py" curl -o ~/.cursor/hooks/akto/akto-validate-mcp-response-wrapper.sh \ "${HOOKS_BASE}/akto-validate-mcp-response-wrapper.sh" curl -o ~/.cursor/hooks/akto/akto-validate-mcp-response.py \ "${HOOKS_BASE}/akto-validate-mcp-response.py" # Download utility curl -o ~/.cursor/hooks/akto/akto_machine_id.py \ "${HOOKS_BASE}/akto_machine_id.py" # Make executable chmod +x ~/.cursor/hooks/akto/*.sh ``` {% endstep %} {% step %} **Configure Akto Ingestion URL and API Token** ⚠️ **CRITICAL STEP** {% hint style="warning" %} All wrapper scripts contain the placeholders `{{AKTO_DATA_INGESTION_URL}}` and `{{AKTO_API_TOKEN}}` that **must be replaced** — the URL with your actual Akto instance URL, and the token with your Akto API token. If your deployment does not require auth, set the token to an empty string so the placeholder is removed (an unsubstituted `{{AKTO_API_TOKEN}}` would be sent as an invalid `Authorization` header). {% endhint %} **Automated replacement:** ```bash # Set your Akto ingestion URL and API token AKTO_URL="https://your-akto-instance.com" AKTO_API_TOKEN="your-akto-api-token" # leave empty ("") if your deployment doesn't require auth # Update all wrapper scripts sed -i.bak "s|{{AKTO_DATA_INGESTION_URL}}|${AKTO_URL}|g" ~/.cursor/hooks/akto/*-wrapper.sh sed -i.bak "s|{{AKTO_API_TOKEN}}|${AKTO_API_TOKEN}|g" ~/.cursor/hooks/akto/*-wrapper.sh sed -i.bak 's|export DEVICE_ID="{{DEVICE_ID (optional)}}"||g' ~/.cursor/hooks/akto/*-wrapper.sh # Verify replacement grep -E "AKTO_DATA_INGESTION_URL|AKTO_API_TOKEN" ~/.cursor/hooks/akto/*-wrapper.sh ``` **Manual replacement (alternative):** Edit each wrapper script and replace: ```bash AKTO_DATA_INGESTION_URL="{{AKTO_DATA_INGESTION_URL}}" AKTO_API_TOKEN="{{AKTO_API_TOKEN}}" ``` With: ```bash AKTO_DATA_INGESTION_URL="https://your-akto-instance.com" AKTO_API_TOKEN="your-akto-api-token" ``` Files to update: * `akto-validate-chat-prompt-wrapper.sh` * `akto-validate-chat-response-wrapper.sh` * `akto-validate-mcp-request-wrapper.sh` * `akto-validate-mcp-response-wrapper.sh` {% endstep %} {% step %} **Configure Hooks** Create Cursor hooks configuration: ```bash cat > ~/.cursor/hooks.json << 'EOF' { "version": 1, "hooks": { "beforeSubmitPrompt": [ { "command": "bash ~/.cursor/hooks/akto/akto-validate-chat-prompt-wrapper.sh", "timeout": 10 } ], "afterAgentResponse": [ { "command": "bash ~/.cursor/hooks/akto/akto-validate-chat-response-wrapper.sh", "timeout": 10 } ], "beforeMCPExecution": [ { "command": "bash ~/.cursor/hooks/akto/akto-validate-mcp-request-wrapper.sh", "timeout": 10 } ], "afterMCPExecution": [ { "command": "bash ~/.cursor/hooks/akto/akto-validate-mcp-response-wrapper.sh", "timeout": 10 } ] } } EOF ``` {% endstep %} {% step %} **Configure Hook Behavior (Optional)** Edit wrapper scripts to customize: ```bash # In each *-wrapper.sh file: MODE="atlas" # "argus" or "atlas" AKTO_SYNC_MODE="true" # "true" (blocking) or "false" (observe only) AKTO_TIMEOUT="5" # Timeout in seconds AKTO_CONNECTOR="claude_code_cli" ``` **Mode Options:** * **Argus**: Standard validation and reporting * **Atlas**: Includes device-specific metadata **Sync Mode:** * **true**: Blocks threats * **false**: Reports but allows execution {% endstep %} {% step %} **Restart Cursor** ```bash # Close all Cursor windows and reopen # Or use Cmd+Q (macOS) / Alt+F4 (Windows/Linux) ``` {% endstep %} {% step %} **Verify Installation** Check logs to confirm hooks are working: ```bash # View chat logs tail -f ~/.cursor/akto/chat-logs/akto-validate-chat-prompt.log tail -f ~/.cursor/akto/chat-logs/akto-validate-chat-response.log # View MCP logs tail -f ~/.cursor/akto/mcp-logs/akto-validate-request.log tail -f ~/.cursor/akto/mcp-logs/akto-validate-response.log ``` Test by typing a message in Cursor's chat or using an MCP tool. You should see log entries indicating validation occurred. {% endstep %} {% endstepper %} ## Configuration Reference ### Wrapper Script Variables ```bash MODE="atlas" # "argus" or "atlas" AKTO_DATA_INGESTION_URL="{{AKTO_DATA_INGESTION_URL}}" # ⚠️ MUST REPLACE AKTO_API_TOKEN="{{AKTO_API_TOKEN}}" # Akto API token (Authorization header) AKTO_SYNC_MODE="true" # "true" or "false" AKTO_TIMEOUT="5" # Timeout in seconds AKTO_CONNECTOR="claude_code_cli" # Connector identifier ``` ### Environment Variables (Optional) Override defaults via environment variables: ```bash export MODE="atlas" export AKTO_DATA_INGESTION_URL="https://your-akto-instance.com" export AKTO_API_TOKEN="your-akto-api-token" export AKTO_SYNC_MODE="true" export AKTO_TIMEOUT="5" ``` ## Troubleshooting ### Hooks Not Executing ```bash # Check hooks.json exists and is valid cat ~/.cursor/hooks.json | python3 -m json.tool # Verify scripts are executable ls -la ~/.cursor/hooks/akto/ chmod +x ~/.cursor/hooks/akto/*.sh # Restart Cursor completely killall Cursor && open -a Cursor ``` ### Ingestion URL Not Configured ```bash # Check if placeholder still exists grep "{{AKTO_DATA_INGESTION_URL}}" ~/.cursor/hooks/akto/*-wrapper.sh # Replace with actual URL AKTO_URL="https://your-akto-instance.com" sed -i.bak "s|{{AKTO_DATA_INGESTION_URL}}|${AKTO_URL}|g" ~/.cursor/hooks/akto/*-wrapper.sh sed -i.bak 's|export DEVICE_ID="{{DEVICE_ID (optional)}}"||g' ~/.cursor/hooks/akto/*-wrapper.sh ``` ### Check Logs for Errors ```bash # View chat logs cat ~/.cursor/akto/chat-logs/akto-validate-chat-prompt.log cat ~/.cursor/akto/chat-logs/akto-validate-chat-response.log # View MCP logs cat ~/.cursor/akto/mcp-logs/akto-validate-request.log cat ~/.cursor/akto/mcp-logs/akto-validate-response.log ``` ### Events Not in Dashboard ```bash # Test API connectivity curl -X POST "${AKTO_DATA_INGESTION_URL}/api/v1/events" \ -H "Content-Type: application/json" \ -d '{"test": "event"}' # Verify URL in wrapper scripts grep "AKTO_DATA_INGESTION_URL" ~/.cursor/hooks/akto/*-wrapper.sh ``` ## Uninstallation To completely remove Akto hooks from Cursor: ### Complete Removal ```bash # 1. Remove hook configuration rm ~/.cursor/hooks.json # 2. Remove Akto hook scripts rm -rf ~/.cursor/hooks/akto/ # 3. Remove Akto logs (optional - keeps historical data if skipped) rm -rf ~/.cursor/akto/ # 4. Restart Cursor killall Cursor && open -a Cursor ``` ### Selective Removal (Keep Logs) If you want to preserve logs for audit purposes: ```bash # Remove only hooks and configuration rm ~/.cursor/hooks.json rm -rf ~/.cursor/hooks/akto/ # Restart Cursor killall Cursor && open -a Cursor ``` ### Backup Before Removal ```bash # Backup configuration and logs before removal mkdir -p ~/akto-backup cp ~/.cursor/hooks.json ~/akto-backup/cursor-hooks.json.bak cp -r ~/.cursor/akto/ ~/akto-backup/cursor-akto-logs/ # Then proceed with removal steps above ``` ### Verify Removal ```bash # Check that hooks are removed test -f ~/.cursor/hooks.json && echo "⚠️ hooks.json still exists" || echo "✅ hooks.json removed" test -d ~/.cursor/hooks/akto && echo "⚠️ Hook scripts still exist" || echo "✅ Hook scripts removed" # Check if logs are removed (if you chose to remove them) test -d ~/.cursor/akto && echo "ℹ️ Logs still present" || echo "✅ Logs removed" ``` ### Restore Cursor to Default After uninstallation, Cursor will operate without Akto security monitoring. No restart or additional configuration is needed beyond removing the files. ## Enterprise Deployment ### Automated Deployment Script ```bash #!/bin/bash # deploy-cursor-hooks.sh set -e AKTO_URL="${1:-https://your-akto-instance.com}" AKTO_API_TOKEN="${2:-}" # optional: pass your Akto API token as the 2nd argument echo "🔧 Installing Akto Guardrails for Cursor..." # Create directories mkdir -p ~/.cursor/hooks/akto ~/.cursor/akto/chat-logs ~/.cursor/akto/mcp-logs # Download hooks HOOKS_BASE="https://raw.githubusercontent.com/akto-api-security/akto/master/apps/mcp-endpoint-shield/cursor-hooks" curl -s "${HOOKS_BASE}/akto-validate-chat-prompt-wrapper.sh" -o ~/.cursor/hooks/akto/akto-validate-chat-prompt-wrapper.sh curl -s "${HOOKS_BASE}/akto-validate-chat-prompt.py" -o ~/.cursor/hooks/akto/akto-validate-chat-prompt.py curl -s "${HOOKS_BASE}/akto-validate-chat-response-wrapper.sh" -o ~/.cursor/hooks/akto/akto-validate-chat-response-wrapper.sh curl -s "${HOOKS_BASE}/akto-validate-chat-response.py" -o ~/.cursor/hooks/akto/akto-validate-chat-response.py curl -s "${HOOKS_BASE}/akto-validate-mcp-request-wrapper.sh" -o ~/.cursor/hooks/akto/akto-validate-mcp-request-wrapper.sh curl -s "${HOOKS_BASE}/akto-validate-mcp-request.py" -o ~/.cursor/hooks/akto/akto-validate-mcp-request.py curl -s "${HOOKS_BASE}/akto-validate-mcp-response-wrapper.sh" -o ~/.cursor/hooks/akto/akto-validate-mcp-response-wrapper.sh curl -s "${HOOKS_BASE}/akto-validate-mcp-response.py" -o ~/.cursor/hooks/akto/akto-validate-mcp-response.py curl -s "${HOOKS_BASE}/akto_machine_id.py" -o ~/.cursor/hooks/akto/akto_machine_id.py # Make executable chmod +x ~/.cursor/hooks/akto/*.sh # Configure URL and token, strip optional placeholders sed -i.bak "s|{{AKTO_DATA_INGESTION_URL}}|${AKTO_URL}|g" ~/.cursor/hooks/akto/*-wrapper.sh sed -i.bak "s|{{AKTO_API_TOKEN}}|${AKTO_API_TOKEN}|g" ~/.cursor/hooks/akto/*-wrapper.sh sed -i.bak 's|export DEVICE_ID="{{DEVICE_ID (optional)}}"||g' ~/.cursor/hooks/akto/*-wrapper.sh # Create hooks.json cat > ~/.cursor/hooks.json << 'EOFHOOKS' { "version": 1, "hooks": { "beforeSubmitPrompt": [{"command": "bash ~/.cursor/hooks/akto/akto-validate-chat-prompt-wrapper.sh", "timeout": 10}], "afterAgentResponse": [{"command": "bash ~/.cursor/hooks/akto/akto-validate-chat-response-wrapper.sh", "timeout": 10}], "beforeMCPExecution": [{"command": "bash ~/.cursor/hooks/akto/akto-validate-mcp-request-wrapper.sh", "timeout": 10}], "afterMCPExecution": [{"command": "bash ~/.cursor/hooks/akto/akto-validate-mcp-response-wrapper.sh", "timeout": 10}] } } EOFHOOKS echo "✅ Installation complete! Restart Cursor." echo "📍 Akto instance: ${AKTO_URL}" ``` **Deploy to developers:** ```bash curl -fsSL https://your-org.com/deploy-cursor-hooks.sh | bash -s https://your-akto-instance.com ``` ## Quick Setup Summary ```bash # 1. Create directories mkdir -p ~/.cursor/hooks/akto ~/.cursor/akto/chat-logs ~/.cursor/akto/mcp-logs # 2. Download all hook scripts from GitHub (see step 2 above) # 3. ⚠️ Configure Akto URL and API token (REQUIRED) AKTO_URL="https://your-akto-instance.com" AKTO_API_TOKEN="your-akto-api-token" # leave empty ("") if your deployment doesn't require auth sed -i.bak "s|{{AKTO_DATA_INGESTION_URL}}|${AKTO_URL}|g" ~/.cursor/hooks/akto/*-wrapper.sh sed -i.bak "s|{{AKTO_API_TOKEN}}|${AKTO_API_TOKEN}|g" ~/.cursor/hooks/akto/*-wrapper.sh sed -i.bak 's|export DEVICE_ID="{{DEVICE_ID (optional)}}"||g' ~/.cursor/hooks/akto/*-wrapper.sh # 4. Make executable chmod +x ~/.cursor/hooks/akto/*.sh # 5. Create hooks.json (see step 4 above) # 6. Restart Cursor ``` ## Resources * **GitHub**: * **Support**: * **Community**: --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://ai-security-docs.akto.io/akto-atlas-agentic-ai-security-for-employee-endpoints/endpoints-discovery-agents/cursor-hooks.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.