The complete masterclass on Cursor 3.x — the agent-first AI IDE. 12 modules from the new Agents Window to the five primitives (Rules, Skills, Subagents, Hooks, MCP). 100 paste-ready prompts. 6 reusable skill packages. 8 production templates. Composer 2 mastery, Bugbot, the Plugin Marketplace, Build in Parallel. Beginner to expert. No fluff.
Cursor 3.3 (released May 7, 2026) is the current version of the agent-first AI IDE from Anysphere. The 3.x line introduced the Agents Window as the default surface, replacing the classic file-tree-first IDE view — though the classic IDE remains available and you can toggle between them at any time.
The mental model that matters most: every Cursor capability today fits into five primitives — Rules (.cursor/rules/*.mdc), Skills (.cursor/skills/*/SKILL.md), Subagents (.cursor/agents/), Hooks (.cursor/hooks.json), and MCP servers (.cursor/mcp.json). Plugins from the Marketplace bundle one or more of these into single installable packages.
This masterclass walks every primitive end-to-end with 100 paste-ready prompts, 6 reusable skill packages, 8 production templates, and the honest decision matrix against Claude Code, Windsurf, Copilot, and Antigravity.
This is a 12-module curriculum plus reference sections. Most readers do not need every module on the first pass. Pick the persona closest to your situation and the path below points to the modules that pay back fastest.
You have heard the hype. You want to install Cursor, ship your first useful change, and understand the mental model before drowning in features.
You want the five primitives mastered, multi-agent workflows running cleanly, and your team's .cursor/rules stack locked in.
You need cost discipline, team marketplaces, Bugbot in CI, enterprise SSO, and the honest answer on Cursor vs Claude Code for your specific stack.
Persistent context. YAML frontmatter (description, globs, alwaysApply). Always-on or glob-scoped or description-loaded. Project > User precedence.
Dynamic capability modules. Loaded only when the agent decides relevant. Bundle scripts, references, templates. Invoke via slash command or auto-discovery.
Parallel specialized agents. Own context window. Own tool access. Own model selection. Run frontend + backend + tests in parallel.
Deterministic scripts. Run before/after agent actions. PreToolUse, PostToolUse, stop, beforeSubmitPrompt. Hard guardrails, no AI judgment.
External tool connections. stdio or Streamable HTTP transport. Hard limit ~40 tools across all servers combined. Project config wins.
Plugins from the Marketplace package one or more of these five primitives into a single installable unit. Launched February 17, 2026 with Cursor 2.5. Launch partners: Amplitude, AWS, Figma, Linear, Stripe, Cloudflare, Vercel, Databricks, Snowflake, Hex. Browse at cursor.com/marketplace or install via /add-plugin in the editor.
Cursor changed more in the six months between October 2025 and May 2026 than in its previous two years combined. Cursor 3.x rebuilt the entire interface around agents. Composer 2 shipped as a proprietary frontier model. Bugbot moved from beta to a 70%+ resolution rate across 2M+ PRs/month. The Plugin Marketplace launched. The five primitives architecture solidified. This module is the orientation.
Cursor is a fork of VS Code with AI woven into every layer. Originally a smarter autocomplete in 2023, by mid-2025 it had Composer multi-file editing, by late 2025 it had Background Agents and Bugbot, and on April 2, 2026 it launched Cursor 3.0 with the Agents Window as the new default interface.
The current version as of this writing is Cursor 3.3, released May 7, 2026. The 3.x line added:
The most useful mental model for the entire Cursor surface today is the five primitives architecture. See the diagram above. Everything you configure in Cursor is one of these five things or a plugin that bundles them.
Cursor switched from request-based to credit-based billing in June 2025 — a change that generated real community backlash but is now the stable model. Each paid plan includes a credit pool equal to the subscription price. Tab completions and Auto mode use minimal credits. Manually selecting frontier models like Claude Opus or GPT-5 burns credits at the underlying API rates.
| Plan | Price | Included Usage | Best For |
|---|---|---|---|
| Hobby | Free | Limited Tab + Agent | Evaluating Cursor; students with edu email |
| Pro | $20/mo | $20 credit pool, Auto unlimited | Daily individual developer use |
| Pro+ | $60/mo | 3x Pro usage on Claude/GPT/Gemini | Heavy agent users hitting Pro limits |
| Ultra | $200/mo | 20x Pro usage + priority features | Full-time AI-native development |
| Teams | $40/user/mo | Pro-equivalent + admin + SSO | 3+ developer teams |
| Enterprise | Custom | Pooled usage + audit + self-hosted pool | Compliance, security review, on-prem |
cursor.com/download. It works on macOS, Windows, Linux.Cmd+Shift+P and type "Agents Window" to see the new interface..cursor/rules file.If you spent the last year ignoring Cursor because the early experience was rough or the pricing changes were chaotic, May 2026 is a fair time to look again. The five primitives architecture, Composer 2's 200K context, Bugbot's 70%+ resolution rate, and the Plugin Marketplace add up to a meaningfully different product than the one you remember. Whether Cursor or Claude Code is the right primary tool for you is Module 12's job. Either way, you should know what Cursor actually does in 2026.
Cursor exposes nine distinct surfaces for interacting with AI. Each has a different cost, latency, and ideal use case. The biggest productivity unlock is matching the surface to the job — most developers waste credits by reaching for Agent Mode when Inline Edit would have done it in a second.
| Surface | Shortcut | What it does | When to use | Credit cost |
|---|---|---|---|---|
| Tab | Tab | Inline autocomplete suggestions | Line-by-line coding flow | Minimal (often free) |
| Chat | Cmd+L | Sidebar Q&A about the codebase | Understanding code; asking questions | Low |
| Inline Edit | Cmd+K | Edit selected code via natural language | Single-file targeted edits, refactors | Low |
| Composer | Cmd+I | Multi-file edits with planning | Adding features touching 2-10 files | Medium |
| Agent | Cmd+I (Agent mode) | Autonomous multi-step task execution | Open-ended tasks, "let it run" | Medium-High |
| Background Agents | Cmd+Shift+P | Long-running agents off the main thread | Tests running while you code; PR reviews | Medium |
| Cloud Agents | Agents Window | Agents running in Cursor cloud VMs | Heavy refactors; multi-hour tasks | High |
| Bugbot | GitHub PR auto-trigger | Automated PR review + Autofix | Every PR | ~$1.00-1.50/run |
| Browser / Design Mode | Cmd+Shift+D | Annotate live UI; preview app | Frontend work, design-to-code | Medium |
The single most useful habit: start at the cheapest surface that could possibly work, escalate only when needed.
Auto mode is Cursor's automatic model routing. It picks a cost-efficient model (typically Cursor's Auto model at roughly $0.25/M cache, $1.25/M input, $6.00/M output) for whatever task you give it. Auto mode usage on paid plans does not draw from your credit pool — it is effectively unlimited.
Default to Auto mode. Only manually pick a frontier model (Claude Opus 4.6, GPT-5, Composer 2) when you have a specific reason: complex architectural reasoning, large refactor needing deep code understanding, or final review of important work. Treating frontier models like infrastructure rather than a default tool is the difference between $20/month and $200/month.
Composer 2 deserves its own module (Module 4), but here is the quick frame: it is Cursor's proprietary coding-specialized model. Cheaper than Claude Opus, faster than GPT-5, and competitive on coding-specific benchmarks. For most multi-file Composer tasks, Composer 2 (or Auto routing to it) is the right answer. Reserve frontier models for tasks that need broad reasoning beyond pure coding.
Cursor's built-in browser opens, navigates, and prompts against local websites. Design Mode (Cmd+Shift+D) lets you annotate and target UI elements directly. Shift+drag selects an area, Cmd+L adds the selection to chat, Option+click adds an element to the input.
This is the right tool for frontend iteration. Instead of describing "the button on the top-right of the settings page", click it. Instead of asking "why is this layout broken", point at it.
.cursor/rules SystemRules are the highest-ROI configuration in Cursor. A team running with well-crafted rules consistently generates code that matches their stack, conventions, and constraints — without re-explaining everything in every conversation. The single biggest mistake new Cursor users make is skipping this module.
.mdc rule files with correct frontmatterRules live in .cursor/rules/ at the repo root. Each rule is a .mdc file (markdown with YAML frontmatter). The legacy .cursorrules file at the repo root still works for backwards compatibility, but the directory pattern is the current recommended structure.
my-project/
├── .cursor/
│ ├── rules/
│ │ ├── 000-style-guide.mdc (alwaysApply: true)
│ │ ├── 100-typescript.mdc (globs: **/*.ts, **/*.tsx)
│ │ ├── 200-react-components.mdc (globs: components/**/*)
│ │ ├── 300-api-routes.mdc (globs: app/api/**/*)
│ │ └── 400-shopify-liquid.mdc (globs: sections/**/*.liquid)
│ ├── agents/
│ ├── hooks.json
│ └── mcp.json
├── AGENTS.md (project-root alternative)
└── .cursorignore
alwaysApply: true. Prepended to every conversation. Use sparingly — bloated always-on rules destroy context quality.globs: "**/*.ts" or similar. Only loaded when matching files are in context. Use for stack-specific rules (React conventions, Python style, Liquid patterns).description. Loaded when the agent decides they are relevant based on the description. Use for procedural how-tos that should only activate when needed.---
description: TypeScript conventions, strict-mode patterns, and forbidden constructs for this codebase.
globs: "**/*.ts,**/*.tsx"
alwaysApply: false
---
# TypeScript Rules
## Strict Mode
- TypeScript strict mode is REQUIRED. No `any` unless typed via `unknown` first and narrowed.
- No `as` casts except when bridging to external libraries with broken types.
- No non-null assertions (`!`). Use proper narrowing or throw with context.
## Imports
- Use `import type { ... }` for type-only imports.
- Path aliases via `@/` for internal modules; never relative `../../../`.
## Patterns
- Async functions always return `Promise<Result<T, E>>` for fallible operations.
Use the `Result` type from `@/lib/result.ts`. Never throw across module boundaries.
- React components use function syntax + named export. No default exports for components.
- Server actions live in `app/actions/` and have the `"use server"` directive.
## Forbidden
- `console.log` in committed code (use the logger from `@/lib/log.ts`).
- Inline styles. Use Tailwind utility classes via `cn()` helper.
- Direct database access from components. Always go through `/lib/db/` repositories.
Three locations for rules, in order of priority when there's a conflict:
.cursor/rules/ in the repo. Apply to anyone working in the project.For smaller projects, a single AGENTS.md at the repo root works as a plain markdown alternative to the .cursor/rules/ directory. No frontmatter required. Same idea: persistent instructions that shape every AI interaction in the project. Use AGENTS.md when you want one simple file. Use .cursor/rules/ when you want composable, glob-scoped rules that grow with the project.
**/*.ts, Python rules in **/*.py, etc.Keep each rule file under 500 lines. Split by concern. Reference (don't copy) long runbooks; link to a docs/ file or external URL instead. Start simple, add rules when the agent keeps making the same mistake. A bloated rules directory teaches the agent nothing; a focused one teaches it everything that matters.
Composer 2 is Cursor's proprietary coding-specialized model, released March 19, 2026. It is the only first-party model in the IDE and the one Auto mode routes to most often for substantive coding work. This module is everything you need to use it well.
A coding-specialized model trained in two phases: continued pretraining on coding-specific data first, then large-scale reinforcement learning on long-horizon coding tasks. The RL phase uses "compaction-in-the-loop" — the model learns to compress its own context to roughly 1,000 tokens when approaching length thresholds, which reduces compaction error by 50% versus prior methods.
Practical implication: Composer 2 can run for hundreds of sequential actions without losing the plot. This is what makes it useful for actual multi-file refactors, not just for single-file edits.
| Task type | Best choice | Why |
|---|---|---|
| Multi-file refactor in existing codebase | Composer 2 | Optimized for exactly this; 200K context handles big diffs |
| Implementing a feature spec across 5-10 files | Composer 2 | Coding-specialized; cheaper than Opus |
| Long-horizon task (hundreds of steps) | Composer 2 | Compaction-in-the-loop training |
| Architectural reasoning, system design | Claude Opus 4.6/4.7 | Broader reasoning, not coding-specific |
| Hardest coding benchmarks (SWE-bench top tier) | GPT-5 / Opus 4.7 | Composer 2 trails GPT-5 at 75.1 on Terminal-Bench |
| Routine completions and small edits | Auto mode | Routes to the cheapest sufficient model, no credit burn |
| Document writing, planning, non-code | Frontier models | Composer is coding-optimized, weaker on prose |
200K tokens is roughly 150,000 words of code and context. That is several large files plus your entire .cursor/rules stack plus the relevant docs. To exploit it well:
@codebase for broad discovery; @filename for focused work; @folder for module-scoped context.Phase 1 — SCAN
Scan the @src directory and tell me:
1. The main architecture patterns you observe
2. How state management works in this codebase
3. Where the API layer lives
4. Existing test patterns and frameworks
Pause and wait for me before continuing.
---
Phase 2 — PLAN
I want to add [FEATURE].
Before writing code, give me:
1. The files you will create
2. The files you will modify
3. The existing patterns you will follow
4. Any open questions about the requirements
Wait for my approval before implementing.
---
Phase 3 — IMPLEMENT
Implement the approved plan. Goals in order:
1. Create the service layer in /src/services/
2. Add the API endpoint in /src/api/
3. Update types in /src/types/
4. Write unit tests for the service
Constraints:
- Follow the patterns in /src/services/user.service.ts
- Don't break existing API contracts
- All new functions need JSDoc
- Use the Result<T, E> pattern for fallible operations
Start with Goal 1. Pause and show me the diff before moving to Goal 2.
Cursor did not initially disclose the Kimi K2.5 base for Composer 2 in the March 19 launch post. Users discovered it in API headers on March 20. Lin Qiao (CEO of Fireworks AI) confirmed Cursor was license-compliant from day one through Fireworks. Moonshot AI confirmed the arrangement as an authorized commercial partnership. Cursor founders acknowledged the non-disclosure was a miss and committed to base-model transparency going forward. This matters if you have policy requirements around model provenance.
Composer with Agent Mode turned on is when Cursor stops being autocomplete and becomes a coworker. You describe a task in natural language, the agent makes a plan, edits files, runs commands, and shows you a diff to approve. The "let it run" workflow is where Cursor 3.x diverges hardest from VS Code + Copilot.
Composer in default mode plans, edits, and stops. Agent Mode plans, edits, runs commands, reads output, course-corrects, and continues until the task is done or you stop it. The escalation is from "edit my files" to "go execute this task."
Cursor 3 added the /worktree command that creates a separate Git worktree so the agent's changes happen in isolation. Pair with /best-of-n to run the same task in parallel across multiple models in their own worktrees, then compare outcomes. This is the safest way to let an agent run.
/worktree feature-oauth # spin up isolated worktree
/best-of-n 3 implement OAuth # run same task 3x in parallel
Agent Mode + YOLO mode + production credentials in the environment = a bad day. Always run Agent Mode either: (a) on a clean branch with no production secrets in env, (b) in a worktree, or (c) in Cursor's sandbox mode. Cursor 2.5 added granular network and filesystem access controls to the sandbox — use them.
Subagents are independent specialized agents with their own context window, tool access, and model selection. They run in parallel with the main agent. Cursor 3.3's "Build in Parallel" feature automatically identifies independent parts of a plan and runs them simultaneously as async subagents. This is the feature that makes Cursor materially faster than its competitors for many real workflows.
.cursor/agents/Cursor ships default subagents you can use without configuration:
Custom subagents live in .cursor/agents/ (project) or ~/.cursor/agents/ (user). Each is a markdown file with YAML frontmatter:
---
name: test-runner
description: Runs the test suite, reports failures, suggests fixes. Use when the main agent has made changes and you want test feedback before continuing.
model: composer-2
tools:
- bash
- read_file
---
# Test Runner Subagent
Your job is to run the test suite for the project and report failures.
## Workflow
1. Detect the testing framework (vitest, jest, pytest, etc.)
2. Run the test suite with the appropriate command
3. Parse the output
4. For each failure, identify:
- The test that failed
- The assertion that failed
- The file and line where the failure occurred
- Likely cause based on recent changes
5. Return a structured report to the parent agent
## Constraints
- Do not modify test files unless explicitly asked
- Do not modify source files
- If the test suite cannot be detected or run, return that fact clearly
- Pass through any environment-specific test commands from package.json scripts
The most immediately useful pattern. Define a shared TypeScript interface or Zod schema first. Spawn two subagents: one implements the React component against the interface, the other implements the API endpoint to match. When both finish, integration usually works on the first try.
Main agent writes implementation. A test-runner subagent (see file above) runs the test suite continuously in the background. Every time the main agent saves a file, the test subagent runs relevant tests and reports failures back to the main conversation. The main agent does not have to stop coding to run tests.
Each subagent produces a focused report. The main agent collates results into a single review summary. The full review runs in roughly the time of any single check sequentially.
Cursor 3.3 added a one-click "Build in Parallel" button that does the multi-subagent dispatch automatically. It scans your plan, identifies independent parts, runs them simultaneously, and keeps dependent steps in order. For plans with clear parallelism (e.g., "update 8 components to use the new design tokens"), this is the right default.
The single biggest mistake with subagents: skipping the shared contract. If your frontend and backend subagents work without an explicit shared TypeScript interface or Zod schema, integration will break in subtle ways. Always have the main agent generate the contract first, then hand it to both subagents as a hard requirement. This pattern is non-negotiable for production work.
Each subagent has its own context window. This is a feature, not a limitation — it keeps the main conversation clean and focused. But it also means subagents don't see what the main agent or other subagents are doing in real time. Communication happens through the explicit return value of the subagent. Plan your prompts accordingly.
Model Context Protocol is the open standard for connecting AI applications to external tools through a single consistent interface. In Cursor, MCP is what turns the agent from "a text-only assistant inside the editor" into "an agent that can read Slack, query Postgres, open GitHub issues, and check Datadog logs." This is the longest module in the masterclass because MCP is also the surface where most users hit walls — context limits, security CVEs, and silent tool failures.
.cursor/mcp.json with stdio and Streamable HTTP serversMCP defines three moving pieces:
github.create_issue, postgres.query).When you open Cursor, the agent scans your enabled MCP servers, loads the tools they expose, and the agent decides which tools to call as part of any given task.
.cursor/mcp.jsonTwo locations:
.cursor/mcp.json in the repo root. Applies only to that project. Commit it (without secrets).~/.cursor/mcp.json. Applies everywhere. Personal API keys go here.Same server in both files? Project config wins.
{
"mcpServers": {
"github": {
"command": "docker",
"args": [
"run", "-i", "--rm",
"-e", "GITHUB_PERSONAL_ACCESS_TOKEN",
"ghcr.io/github/github-mcp-server"
],
"env": {
"GITHUB_PERSONAL_ACCESS_TOKEN": "${env:GITHUB_PAT}"
}
},
"postgres": {
"command": "npx",
"args": ["-y", "@modelcontextprotocol/server-postgres", "${env:DATABASE_URL}"]
},
"linear": {
"type": "http",
"url": "https://mcp.linear.app/sse",
"headers": {
"Authorization": "Bearer ${env:LINEAR_TOKEN}"
}
},
"sentry": {
"command": "npx",
"args": ["-y", "@sentry/mcp-server"],
"env": {
"SENTRY_AUTH_TOKEN": "${env:SENTRY_TOKEN}",
"SENTRY_ORG": "your-org"
}
}
}
}
Cursor has a hard practical ceiling of roughly 40 active tools across all your MCP servers combined. Exceed it and two things happen: you get a warning, and the agent silently loses access to some tools. It just cannot see them anymore.
The limit exists for a reason: each tool definition burns context tokens. Once you stack 40+ tool descriptions into the system prompt, the LLM's ability to pick the right one for any given task deteriorates noticeably.
What to do:
| Server | What it does | Best for | Transport |
|---|---|---|---|
| GitHub | Manage repos, PRs, issues, code review | Every developer | stdio (Docker) |
| Git | Local repo operations — diffs, commits, blame | Every developer | stdio |
| Postgres | Natural language queries against any Postgres DB | Backend, data work | stdio |
| Linear | Issue tracking, sprint planning, cross-issue context | Product teams | HTTP (official) |
| Sentry | Pull error stack traces, breadcrumbs into context | Production debugging | stdio |
| Playwright | Browser automation, E2E tests, screenshots | Frontend, QA | stdio |
| Context7 | Up-to-date version-specific library docs | Every developer (no API key) | stdio |
| Figma | Read Figma designs, frames, design tokens | Design-to-code work | HTTP |
| Stripe | Read products, prices, payments; build integrations | E-commerce, billing | HTTP (official) |
| Vercel | Deployments, env vars, logs, project config | Frontend deployment | HTTP (official) |
| AWS | S3, Lambda, CloudWatch, IAM read operations | Cloud infrastructure | HTTP (official) |
| Brave Search | Real-time web search using Brave's index | Research, fresh info | stdio |
Every MCP server is, for all practical purposes, a fully trusted integration. Whatever permissions you hand a server — database access, GitHub tokens, API keys — it will use them. If a server is compromised or malicious, it has everything you gave it. Treat each one like you would treat a production credential.
The CVEs you should know about:
.cursor/mcp.json (e.g., via a malicious PR) could swap the command behind a trusted-looking name. Cursor patched this; the lesson stands..cursor/mcp.json. Use ${env:VAR_NAME} references; set env vars in your shell.command field every time .cursor/mcp.json changes. A malicious PR can swap a binary.npm audit on stdio servers periodically. They are npm packages with all the usual supply-chain risks.The most frustrating MCP problem: Cursor shows no error, no warning, and tools just are not showing up. Nine times out of ten, it is one of these:
mcpServers root key. Cursor silently ignores the entire file.@some-org/mcp-server@9.9.9 when only 0.1.0 exists.-y with npx. The process hangs forever waiting for "y" at the install prompt with no interactive terminal.${env:GITHUB_PAT} resolves to empty and the server can't auth.Fastest debug path: copy the command from mcp.json verbatim and run it in a terminal. Whatever error Cursor was swallowing prints to your screen.
MCP servers are not Cursor-specific. The same server that works in Cursor also works in Claude Code, Windsurf, VS Code Copilot, and any other MCP-compliant host. Configure once, use everywhere. This portability is why investing time in your MCP stack pays back even if you eventually switch primary IDEs.
Launched February 17, 2026 with Cursor 2.5, the Plugin Marketplace is the official distribution platform for plugins that bundle one or more of the five primitives (MCP servers, skills, subagents, hooks, rules) into a single installable package. Browse at cursor.com/marketplace or install via /add-plugin in the editor.
Cursor 2.5 launched with first-party plugins from ten partners spanning design, payments, infrastructure, and analytics:
| Partner | Category | What it adds |
|---|---|---|
| Figma | Design | Read frames, design tokens, component specs |
| Linear | Project mgmt | Issues, sprints, status; cross-issue context |
| Stripe | Payments | Products, prices, payment links; integration builder |
| Vercel | Deployment | Deployments, env vars, logs, project config |
| Cloudflare | Edge / DNS | Workers, DNS records, Pages projects |
| AWS | Cloud infra | S3, Lambda, CloudWatch, IAM operations |
| Databricks | Data platform | Notebooks, SQL warehouses, workflows |
| Snowflake | Data warehouse | Tables, queries, warehouse operations |
| Hex | Data notebooks | Project context, runs, exports |
| Amplitude | Product analytics | Events, charts, dashboards into agent context |
Before plugins, configuring all five primitives for a stack meant manually wiring an MCP server, writing a SKILL.md, defining subagents, configuring hooks, and writing rules. Five files, five mental models, lots of glue.
A plugin installs all five at once. The Stripe plugin, as one example, bundles a Stripe MCP server (for API access), a SKILL.md (for "build a Stripe integration" workflows), rules for Stripe API conventions, and pre-configured agent behaviors for payments work. One click. One install. Five primitives, configured.
cursor.com/marketplace or type /add-plugin in the editormcp.json editingTeams and Enterprise plans can create custom team marketplaces with private plugins. Admins control which plugins are available to the team and how they distribute. Three distribution modes:
Use Required for plugins that enforce team standards (e.g., a custom BUGBOT.md, mandatory security rules). Use Default On for plugins most of the team needs (e.g., the company's internal Linear plugin). Use Default Off for niche stack plugins.
Cursor publishes their internal CI, code review, and testing workflows as a public reference plugin: the Cursor Team Kit. Open it and study how Cursor itself uses Cursor — the rules, skills, and automation patterns are unusually high-quality references.
Submissions accepted at cursor.com/marketplace/publish. A plugin is a bundle of any combination of the five primitives plus a manifest. The marketplace runs a security review on every submission before listing.
Plugin if: shared across > 3 projects, used by > 3 people, includes MCP servers with credentials, or has > 200 lines of configuration. Glue manually if: project-specific, one-developer use, or just a few rules and a SKILL.md. Don't over-engineer; the marketplace is best for genuinely reusable bundles.
Bugbot is Cursor's automated PR review agent — and as of May 2026, the most credible AI-powered code review tool on the market. It reviews every PR, posts inline comments on potential issues, and with Autofix enabled it spins up cloud agents in isolated VMs that push proposed fixes directly to your PR branch. Cursor's own engineering team uses it heavily; so do Sentry, Discord, Rippling, and dozens of other major shops.
BUGBOT.md custom rules that match your team's standardsBugbot is built on a fully agentic architecture (rebuilt fall 2025 from a pipeline-based design). The agent reasons over the diff dynamically, calls tools as needed, and decides where to investigate deeper rather than following a fixed sequence of passes.
Bugbot's usage-based billing (rolling out by June 2026) introduces configurable effort levels:
| Effort | Cost | Latency | What it catches |
|---|---|---|---|
| Low | ~$0.50 | Fast | Obvious logic bugs, syntax issues, common patterns |
| Default | ~$1.00-$1.50 | Standard | Logic + security + edge cases. 80% resolution rate. |
| High | ~$3.00-$5.00 | Slower | Default + deeper analysis. 35% more bugs found at same 80% resolution rate. |
| Custom | Variable | Variable | Configurable logic decides effort per PR based on size, files touched, risk |
Default for most teams. High effort for security-sensitive repos, infrastructure code, or large refactors. Custom logic is the right answer for teams with mixed-risk codebases — small documentation PRs get low effort, anything touching auth or billing gets high.
BUGBOT.md — custom rulesDrop a BUGBOT.md in your repo root to define team standards. Bugbot uses it to score PRs against your specific conventions, not just generic best practices.
# Bugbot Rules for [Project Name]
## Required
- Every new API endpoint must have input validation via Zod schemas.
- Every database write must be wrapped in a transaction.
- Every async function returning a Promise must handle rejections explicitly.
- No `console.log` in committed code. Use the logger.
## Forbidden
- `any` type in TypeScript. Use `unknown` and narrow.
- Inline SQL. Always use the query builder or stored procedures.
- Importing from `app/api/` into anything outside `app/api/`.
- Hardcoded secrets, API keys, or credentials anywhere.
## Security-critical paths
The following files handle authentication, authorization, or payments. Bugbot should
review changes to these with extra care:
- `app/api/auth/**`
- `app/api/billing/**`
- `lib/auth/**`
- `lib/stripe/**`
## Test coverage
- New code in `lib/` must have unit tests.
- New API endpoints must have integration tests.
- Coverage regressions of more than 2% should be flagged.
## Migration patterns
- Database migrations must be backwards-compatible for at least one deploy cycle.
- Frontend changes must be feature-flagged if they affect > 5% of users.
If your team uses Claude Code (or any other AI) to write PRs, run Bugbot as the cross-model reviewer. Bugbot uses Cursor's own model stack, so when it reviews Claude-written code (or vice versa), you get genuine diversity-of-perspective benefits. As Sentry's David Cramer put it: "The hit rate from Bugbot is insane. Catching bugs early saves huge downstream cost."
The pattern is fire-and-forget once configured:
Cursor's own security team publishes their four-agent stack as a reference pattern for teams who need security-specific review (not just general bug-finding):
@Cursor in Slack.Cursor publishes these as automation templates. Other security teams customize them for their own threat models.
Bugbot is aggressive by design — it errs on the side of flagging potential issues. Some flags will be wrong. Two practical rules:
BUGBOT.md rules to teach it your conventions.At ~$1.00-$1.50 per PR run on default effort, a team shipping 50 PRs/week is looking at roughly $200-$300/month in Bugbot costs. Compare to the cost of one production incident, one auth regression that ships, or one hour of senior engineer review time per day across the team. The math is not close.
Hooks and Skills are the two primitives where Cursor genuinely diverges from Claude Code, Windsurf, and Copilot. Hooks are deterministic — they run real scripts with real consequences. Skills are dynamic — they teach the agent how to do something specific, packaged for reuse. Together they enable the "agent runs the workflow you defined" pattern.
.cursor/hooks.json with PreToolUse, PostToolUse, stop, and beforeSubmitPrompt hooksSKILL.md files for repeatable domain workflowsHooks are scripts. They execute real code with real consequences, with no AI judgment involved. This is what makes them different from rules. A rule says "the agent should run the formatter before saving"; a hook makes sure the formatter runs whether the agent wants to or not.
Cursor supports four hook types as of May 2026:
{
"hooks": {
"PostToolUse": [
{
"matcher": "edit_file",
"command": "bash .cursor/hooks/format-on-save.sh"
},
{
"matcher": "write_file",
"command": "bash .cursor/hooks/format-on-save.sh"
}
],
"PreToolUse": [
{
"matcher": "run_terminal",
"command": "bash .cursor/hooks/block-dangerous.sh"
}
],
"stop": [
{
"command": "bun .cursor/hooks/grind.ts"
}
]
}
}
One of the most powerful Cursor patterns: a stop hook reads the conversation status, checks for a "DONE" marker in a scratchpad file, and if the work isn't done, returns a followup_message that keeps the agent grinding.
import { readFileSync, existsSync } from "fs";
interface StopHookInput {
conversation_id: string;
status: "completed" | "aborted" | "error";
loop_count: number;
}
const input: StopHookInput = await Bun.stdin.json();
const MAX_ITERATIONS = 5;
if (input.status !== "completed" || input.loop_count >= MAX_ITERATIONS) {
console.log(JSON.stringify({}));
process.exit(0);
}
const scratchpad = existsSync(".cursor/scratchpad.md")
? readFileSync(".cursor/scratchpad.md", "utf-8")
: "";
if (scratchpad.includes("DONE")) {
console.log(JSON.stringify({}));
} else {
console.log(JSON.stringify({
followup_message: `[Iteration ${input.loop_count + 1}/${MAX_ITERATIONS}] Continue working. Update .cursor/scratchpad.md with DONE when complete.`
}));
}
The pattern: ask the agent to work toward a goal and to mark a scratchpad file with DONE when complete. The stop hook automatically keeps the agent going up to MAX_ITERATIONS times until DONE is written. This is how teams build agents that "just keep working until the tests pass."
Skills sit alongside Rules but serve a different purpose. Rules describe persistent project conventions. Skills encode the steps for a recurring domain task — scaffolding a new database migration, releasing a hotfix, running a release checklist, generating a feature flag.
Skills live in .cursor/skills/<skill-name>/SKILL.md. Each skill folder can include optional scripts/, references/, and assets/ directories.
---
name: release-hotfix
description: Cuts a hotfix release. Use when a critical bug needs to ship to production outside the normal release cycle.
---
# Release Hotfix Skill
## When to use
Invoke this skill when:
- A critical bug is in production
- The fix has been approved by an engineering lead
- The change is small (under 50 LOC) and well-tested
## Workflow
### 1. Verify preconditions
- Confirm the bug is actually critical (not just urgent)
- Confirm the fix is in `main` and tests pass
- Confirm an engineering lead has approved the hotfix
### 2. Create the hotfix branch
```bash
git checkout -b hotfix/[issue-id]-[short-description] main
```
### 3. Cherry-pick the fix
- Identify the merge commit on main
- Cherry-pick into the hotfix branch
- Run the test suite locally
### 4. Tag the release
- Bump the patch version in package.json
- Update CHANGELOG.md with the hotfix entry
- Tag: `v[major].[minor].[patch+1]`
### 5. Open the PR
- Title: `Hotfix: [short description]`
- Link to the original bug issue
- Tag the release manager for review
### 6. After merge
- Trigger production deploy via the release workflow
- Verify the fix in production
- Update the bug issue with deploy timestamp
- Notify the team in #releases
## References
- See `references/hotfix-checklist.md` for the full pre-merge checklist
- See `references/rollback-procedure.md` for the rollback workflow if the hotfix breaks something
| Use case | Right primitive | Why |
|---|---|---|
| Project conventions (style, naming, banned patterns) | Rules | Persistent, always-on (or glob-scoped) |
| Recurring multi-step task (release, migration, scaffold) | Skills | Procedural; loads only when needed |
| Parallel specialized work (frontend + backend) | Subagents | Independent context; runs in parallel |
| Deterministic guardrails (formatter, secret check) | Hooks | Real script, no AI judgment |
| External tool access (Postgres, GitHub, Sentry) | MCP | Standard protocol for tool integrations |
Reusable workflows triggered with / in the agent input live in .cursor/commands/. Examples: /pr, /fix-issue, /review, /update-deps, /docs. Each is a markdown file with a prompt template. Cursor 3.2 added quick-action pills that let you pin commonly-used commands as one-tap buttons.
Before writing a custom skill or hook, check the marketplace. Most common workflows (release management, dependency updates, security scans) already exist as plugins. Borrow first, customize second, build from scratch only when nothing fits.
Cursor works fine for solo developers out of the box. Cursor at team scale needs deliberate engineering. This module is what you set up before rolling Cursor out to 5+ developers, or before your monthly bill scares your finance team.
.cursor/rules via the team dashboard| Pattern | Savings | Implementation effort |
|---|---|---|
| Default to Auto mode (free pool) | $200-500/mo | Train team; one rule in .cursor/rules |
| Reserve frontier models for hard tasks only | $100-300/mo | Cultural — review usage dashboard weekly |
| Cache repeated context (rules don't re-bill) | $50-150/mo | Already automatic if rules are well-structured |
| Use Composer 2 over Claude/GPT for coding | $100-400/mo | Make Composer 2 the default in team settings |
| Cap context window — don't dump entire repos | $50-200/mo | Use @ mentions deliberately; train the team |
| Batch Bugbot to default effort (not high) | $100-500/mo | Custom logic for which PRs get high effort |
| Set hard spend limits per user | Variable | One-time admin configuration |
cursor.com/dashboard shows real-time credit consumption broken down by user and by feature. Admins should review weekly:
Cursor's Enterprise plan added several admin controls in 2026 worth knowing about:
The Cursor SDK gives programmatic access to every model in Cursor for use outside the IDE. Teams ship custom agents from CI/CD pipelines:
name: PR Summary
on:
pull_request:
types: [opened, synchronize]
jobs:
summarize:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
with:
fetch-depth: 0
- name: Run Cursor agent
env:
CURSOR_API_KEY: ${{ secrets.CURSOR_API_KEY }}
run: |
npx @cursor/sdk run \
--model composer-2 \
--task "Summarize the changes in this PR for the team. Focus on: what changed, why it matters, what reviewers should pay extra attention to. Output as a single GitHub comment in markdown." \
--context "$(git diff origin/main...HEAD)" \
--output-format github-comment
Hard rules that prevent agent-caused disasters:
main with auto-commit enabled./worktree for risky tasks. Isolated worktrees mean an agent error doesn't pollute your local main.git reset --hard.Before rolling Cursor out to a team or before forecasting a monthly budget, run a 1-week pilot at your actual workload. Multiply the weekly burn by 4.3 and add a 20% buffer for your monthly estimate. Numbers based on a free trial week underestimate; numbers based on real work at your actual scale do not.
Cursor is the best AI-native IDE in May 2026. It is not the only good tool. It is not the right primary for every developer. This module is the honest decision matrix vs Claude Code, Windsurf, Copilot, Antigravity, and Aider — and the failure modes that no Cursor marketing page will tell you about.
| Tool | Form factor | Pricing | Best for |
|---|---|---|---|
| Cursor | AI-native IDE (VS Code fork) + Agents Window | $20-$200/mo individual; $40/seat team | IDE-first workflows; multi-file editing; teams |
| Claude Code | Terminal-native agent | $20-$200/mo subscription or API tokens | Deep autonomous tasks; large context; CI agents |
| Windsurf | AI-native IDE (VS Code fork) + Cascade | $20/mo Pro (raised from $15 in March 2026) | Autonomous "Flows"; Cognition-backed since July 2025 |
| GitHub Copilot | IDE plugin (VS Code, JetBrains, etc.) + Agent Mode | $10/mo individual; $19/seat business | Enterprise standardization; mixed IDE teams |
| Google Antigravity | Browser-native development surface | Subscription via Google AI | Cloud-native development; Google ecosystem |
This is the comparison most developers actually care about. The honest answer: many production teams use both.
| Dimension | Cursor wins | Claude Code wins |
|---|---|---|
| IDE experience | X (VS Code fork) | |
| Multi-file Composer editing | X | |
| Tab autocomplete quality | X (proprietary model) | |
| Terminal-native automation | X | |
| Deep reasoning depth | X (Opus 4.7) | |
| Single-context window size | X (1M tokens, tool default 200K) | |
| Plugin Marketplace | X (10+ launch partners) | |
| PR review automation | X (Bugbot) | |
| Cloud agents in VMs | X (Background Agents) | |
| Open ecosystem (MCP servers) | ~ Tied | ~ Tied |
| Cost at scale | X (Composer 2 cheaper than Opus) | |
| 2026 developer survey "loved" rating | X (46% vs 19%) |
The practical answer: most working developers in May 2026 use Cursor for daily IDE work (Tab, Composer, multi-file edits) and Claude Code for weekly deep tasks (large refactors, security audits, multi-agent parallel work). The tools complement more than compete.
Most professional teams in May 2026 run 2-3 tools in combination:
If you spend most of your time in an IDE, learn Cursor. The five primitives architecture, Composer 2's 200K context, the Plugin Marketplace, and Bugbot add up to a category-defining product in May 2026. Pair it with Claude Code for the autonomous long-running work where terminal-native + 1M context wins. Don't tie your entire workflow to a single tool — every dominant AI coding tool of the last three years has been displaced by something better within 18 months. The skills (rules, skills, subagents, hooks, MCP) port; the tool that hosts them will change.
One hundred production-tested prompts across ten categories. Each follows the "scan, plan, build, verify" pattern from Module 4. Replace bracketed placeholders with your specifics. Save the ones that work for your stack as your personal prompt library.
Scan this codebase and generate a starter .cursor/rules/000-style-guide.mdc file with alwaysApply true. Include naming conventions, file structure rules, banned patterns, and import discipline based on what you observe.
Generate a glob-scoped .cursor/rules/100-[language].mdc file for [TypeScript/Python/Go/Rust] in this repo. Read existing files to infer conventions. Include strict-mode patterns, forbidden constructs, and required patterns.
Audit my current .cursor/rules/ directory. Identify rules that are too long (over 500 lines), bloat the always-on context, or duplicate concerns. Suggest a refactored structure.
Generate a .cursorignore file for this repo. Include build outputs, dependencies, secrets, large assets, and anything else that should not enter agent context or semantic search.
Create an AGENTS.md at the project root summarizing this repo for any agent: tech stack, architecture, where to find things, conventions, common commands, and how to test.
Set up a starter .cursor/mcp.json with GitHub, Git, and Postgres servers. Use env vars for all secrets. Add comments explaining what each server enables.
Audit my .cursor/mcp.json for security issues: hardcoded secrets, untrusted commands, missing -y flags with npx, unsafe defaults. Suggest fixes.
Create a BUGBOT.md for this repo. Read the codebase to infer team standards. Include required patterns, forbidden patterns, security-critical paths, and test coverage requirements.
Set up a .cursor/hooks.json that runs the project's formatter on every file edit, and blocks any terminal command that contains rm -rf or accesses production env vars.
Bootstrap the entire .cursor/ directory for this repo from scratch: rules, hooks, mcp.json, ignore file, and one starter skill. Use my existing code as the source of truth for conventions.
Phase 1 — SCAN. Read @src and tell me: main architecture patterns, how state management works, where the API layer lives, existing test patterns. Pause before continuing.
Phase 2 — PLAN. I want to add [FEATURE]. Give me the files you will create, files you will modify, patterns you will follow, and any open questions. Wait for approval.
Phase 3 — IMPLEMENT goal-by-goal. Goal 1: [...]. Goal 2: [...]. Goal 3: [...]. Start with Goal 1 and pause before Goal 2 with the diff for me to review.
Add a new [feature type] to this codebase. Follow the existing patterns in @[reference file]. Use the Result<T, E> pattern for fallible operations. Write tests for every public function.
Refactor @[file] to extract [responsibility] into a separate module. Preserve all existing behavior. Update tests. Show me the diff before saving.
Implement [feature] across the stack. Frontend in @components/, API in @app/api/, types in @types/, tests in @tests/. Generate the shared TypeScript interface first, then implement against it.
Migrate @[file] from [old pattern] to [new pattern]. Apply the same migration to all files that follow the same pattern in @[directory]. Show me the diff per file before saving.
Add comprehensive JSDoc comments to every exported function in @[file]. Include param types, return types, error conditions, and one usage example per function.
Implement [feature] using Composer 2 specifically. Use the 200K context window — load all relevant files via @ mentions before writing any code. Plan first, implement second.
Convert this design mockup [attached image] into a React component using the patterns in @components/ui/. Match spacing, typography, and color exactly. Use only Tailwind utility classes.
Agent task: Add OAuth login (GitHub provider) to this app. Plan first, run tests after every file change, show me each diff before committing. Use the worktree command first.
Run the test suite. For each failure, identify the test, the assertion, the file and line, and the most likely cause based on recent changes. Then propose fixes one at a time.
Audit this codebase for [security issue type — exposed secrets, SQL injection, XSS, auth bypass]. For each finding, trace the attacker-controlled input to the real sink. Verify existing controls.
Add comprehensive error handling to @[directory]. Wrap fallible operations in Result types, add explicit error logging, and propagate context. Test edge cases.
Set up Vitest (or Jest) in this project. Add config, install deps, create a sample test, run it. Then write a test for @[file].
Generate full unit test coverage for @[directory]. Write tests, run them, fix any source bugs revealed, repeat until coverage is > 80% and all tests pass.
Set up CI for this repo: GitHub Actions workflow that runs lint, type-check, tests, and build on every PR. Use the latest stable action versions. Cache deps appropriately.
Add Dependabot config to this repo. Group minor and patch updates weekly. Major updates require manual review. Open PRs against a non-protected branch.
Improve performance of @[file/function]. Profile first to identify the actual bottleneck. Apply optimizations. Re-profile to verify improvement. Document the change.
Migrate from [framework A] to [framework B] in @[directory]. Plan the migration in phases. Run the test suite after each phase. Rollback if any phase breaks.
Define a shared TypeScript interface for [feature]. Then spawn two subagents: one to implement the React component against the interface, one to implement the API endpoint to match.
Use Build in Parallel to update all components in @components/ to use the new design tokens from @lib/tokens.ts. Identify independent file groups and run them simultaneously.
Set up a 3-subagent PR review pipeline: Subagent A runs lint and formatting, Subagent B runs security analysis, Subagent C runs test coverage. Collate results into one report.
Define a custom .cursor/agents/test-runner.md subagent that runs the test suite, parses output, and reports failures with file/line/cause. Use model: composer-2 and tools: bash, read_file.
Use the Explore subagent to research how [feature/pattern] is implemented across this codebase. Return a focused summary of the relevant files and conventions.
Spawn a docs subagent in parallel with implementation. As the main agent writes @[feature], the docs subagent writes the README section, API docs, and example usage.
Define a .cursor/agents/migration-runner.md subagent that applies a single migration step at a time, runs tests, and pauses for approval before continuing.
Use the Browser subagent to verify the UI for @[page]. Take screenshots at different viewports (375, 768, 1200). Report any visual regressions from the previous deploy.
Spawn a security-review subagent in parallel with feature implementation. Its job is to flag any auth, input-validation, or secret-handling concerns in real time.
Run /best-of-n 3 on this task using composer-2, opus-4.7, and gpt-5. Compare the three implementations. Pick the best one or merge the strongest parts of each.
Extract the repeated [pattern] from @[file] into a single helper function in @lib/. Update all callers. Run tests to verify nothing broke.
This file is too long ([N] lines). Suggest a split into smaller modules by responsibility. Show me the proposed structure before implementing.
Replace every instance of [old pattern] with [new pattern] across @[directory]. Use the same migration discipline: plan first, implement file-by-file, run tests after each.
Convert @[file] from [class-based / callback / promise chain] to [hooks / async-await / Result]. Preserve behavior. Add tests if missing.
Audit @[directory] for code duplication. Group duplicated logic into shared utilities. Report the lines-of-code reduction.
Add proper TypeScript types to @[file]. Remove every any. Use unknown with narrowing where input shape is uncertain. No as casts.
Convert all relative imports in @[directory] to path aliases using the @/ prefix configured in tsconfig.json.
Add comprehensive error boundaries to the React component tree in @app/. Each route gets its own boundary with a fallback UI and error reporting hook.
Modernize @[file]. Replace deprecated APIs with current equivalents. Update to latest syntax (e.g., optional chaining, nullish coalescing). Run the type checker after.
This component re-renders too often. Profile it, identify unnecessary re-renders, apply memoization with useMemo/useCallback/React.memo where it actually helps. Measure before and after.
[Paste error stack trace]. Find the root cause in the codebase. Trace from the error site back to the first contributing function. Propose a fix.
This test passes locally but fails in CI. Investigate the difference. Common causes: timezone, file ordering, env vars, network access, parallel test pollution.
Use the Sentry MCP server to pull the last 10 errors of type [error type]. Find the common root cause. Propose a fix.
[Paste failing log output]. Identify the contributing factors. Walk me through what happened in chronological order. Suggest a fix that addresses the root cause not the symptom.
The bug only reproduces on production data. Without exposing PII, sketch how to write a regression test using anonymized fixture data that captures the same pattern.
This async function sometimes deadlocks. Investigate. Look for missing awaits, resource contention, promise chains that never resolve. Add timeout handling where appropriate.
[Screenshot of broken UI]. Identify what's wrong, find the responsible component, propose a fix. Test at 375px, 768px, and 1200px viewports.
Use git blame on @[file] to find when [behavior/bug] was introduced. Show me the commit and the diff. Suggest a fix or revert.
This API endpoint is slow. Profile it. Find the slow query or function. Optimize. Verify the improvement.
Reproduce the bug locally. Walk me through the reproduction steps. Once reproduced, identify the root cause and propose a fix with a regression test.
Write comprehensive unit tests for @[file]. Cover happy paths, edge cases, error paths, and boundary conditions. Use the test framework already in this project.
Add integration tests for @app/api/[route]. Test the full HTTP request/response cycle including auth, validation errors, and the happy path.
Generate E2E tests using Playwright for the [user flow]. Use the patterns in existing tests. Test in Chrome, Firefox, and WebKit.
Write a test that reproduces this bug: [bug description]. Run it to confirm it fails. Then fix the bug and verify the test passes.
Audit test coverage in @[directory]. Identify untested functions, untested branches, and weak assertions. Add tests to address the gaps.
This test is flaky. Investigate the source of flakiness: race conditions, time-dependent assertions, network calls, ordering assumptions. Fix it for good.
Generate property-based tests for @[function] using fast-check (or equivalent). Test invariants that should hold for all inputs.
Set up visual regression testing for @app/[page] using Playwright screenshots. Establish a baseline. Add the comparison step to CI.
Generate fixtures and factories for @[entity] using the patterns in @tests/factories/. Cover all variants of the entity that appear in tests.
Run the full test suite. For every failure, identify the test, the assertion, the file and line, and the most likely cause. Propose fixes one by one.
Generate a README for this repo. Include: what it does, how to install, how to run locally, how to test, how to deploy, architecture overview. Use the actual stack.
Generate an OpenAPI spec for the routes in @app/api/. Read the validation schemas and types to infer the spec accurately.
Add JSDoc/TSDoc comments to every exported function in @[directory]. Include @param, @returns, @throws, and one usage example.
Generate ARCHITECTURE.md from the code. Diagram the major modules, their responsibilities, and the data flow between them. Use mermaid for the diagram.
Write a CONTRIBUTING.md based on this repo's actual conventions. Include setup, branch naming, commit format, PR process, code style.
Plan a migration from [old version] to [new version] of [framework]. Identify breaking changes, required code updates, test impact, and a rollback plan.
Migrate this app from CommonJS to ESM. Update package.json, tsconfig, imports/exports. Run the test suite. Fix any broken imports.
Convert all class components in @components/ to function components with hooks. Preserve behavior. Run tests after each conversion.
Migrate this project from npm to pnpm. Update lockfiles, scripts, CI workflows. Confirm everything still installs and runs.
Replace [library A] with [library B] across the codebase. Use the worktree command. Apply the migration file-by-file. Test after each.
Use the GitHub MCP server to list open PRs assigned to me. For each, summarize the changes and flag anything risky.
Use the Linear MCP server to fetch all issues in the current sprint. Show me which are blocked and what's blocking them.
Use the Postgres MCP server to run [query]. Read the schema first if you don't know the table structure. Format the results.
Use the Sentry MCP server to pull the last 24 hours of errors for [service]. Group by error type. Identify the top 3 by impact.
Use the Figma MCP server to read the design at [Figma URL]. Implement it as a React component using @components/ui/ patterns.
Use the Vercel MCP server to check the last deployment's status, logs, and any failed builds. Diagnose if anything failed.
Use the Stripe MCP server to create a test product, price, and payment link. Walk me through the integration to use them in this app.
Use the Context7 MCP server to fetch the current docs for [library]. Then implement [feature] using the documented API. Cite the doc references.
Use the Playwright MCP server to navigate to [URL], take a screenshot, and verify [expected element/behavior] is present.
Audit my .cursor/mcp.json. Count active tools across all servers. If > 35 (approaching the 40-tool ceiling), suggest which tools to disable.
Review my staged changes (git diff --staged). Find logic bugs, security issues, edge cases, and style violations. Propose fixes inline.
Review this PR through the lens of BUGBOT.md. For each violation of the required or forbidden patterns, flag the line and explain.
Audit @[directory] for security issues: SQL injection, XSS, exposed secrets, insecure dependencies, auth bypass. Trace each issue to a real sink.
Review this PR for breaking changes. Identify any API contract changes, schema migrations, or behavior changes that downstream consumers need to know about.
Configure Bugbot to use high effort on PRs touching @app/api/auth/, @app/api/billing/, or @lib/auth/. Default effort everywhere else.
Run a 3-subagent review pipeline on this PR: lint, security, coverage. Collate into one report with severity rankings.
Review this PR's tests for quality, not just presence. Flag tests that don't actually test the behavior, weak assertions, missing edge cases.
Audit dependency upgrades in this PR. For each upgraded package, check the changelog for breaking changes. Run reachability analysis on any flagged CVEs.
Review this commit history. Flag commits that should have been split into multiple, commits with poor messages, or commits that mix concerns.
Generate a structured PR description for the changes in git diff origin/main...HEAD. Include: what changed, why, risk assessment, what reviewers should focus on.
Copy all 100 into a markdown file at .cursor/prompts.md in your repo. Reference them by number: "Run prompt 31 for the user-settings feature." Pair with the Skills Library below to turn the most-used ones into reusable SKILL.md files invoked via slash commands.
Six complete configurations you can drop into .cursor/rules/ and .cursor/skills/ today. Each one is production-tested. Customize the bracketed placeholders for your stack.
Locks TypeScript strict mode, forbids common escape hatches, enforces a Result<T, E> pattern for fallible operations, and codifies React component conventions. Drop in any TS/React project.
---
description: TypeScript strict-mode conventions, React component patterns, banned escape hatches.
globs: "**/*.ts,**/*.tsx"
alwaysApply: false
---
# TypeScript Strict Rules
## TypeScript
- TypeScript strict mode is REQUIRED. No `any` unless first typed as `unknown` and narrowed.
- No `as` casts except when bridging to external libraries with broken types. Document the cast.
- No non-null assertions (`!`). Use proper narrowing or throw with context.
- Use `import type { ... }` for type-only imports.
- Path aliases via `@/` for internal modules. Never relative `../../../` beyond one level up.
## Result pattern
- Fallible operations return `Promise<Result<T, E>>`. Use the Result type from `@/lib/result.ts`.
- Never throw across module boundaries. Convert errors to Result at the boundary.
- Use `if (result.ok) { ... } else { ... }` narrowing. Never access `.value` without checking `.ok` first.
## React components
- Function components only. No class components.
- Named exports for components. No default exports.
- Props interfaces named `[Component]Props`. Co-located in the same file.
- Use `cn()` helper from `@/lib/cn.ts` for conditional class names. No template strings for classes.
- Server actions live in `app/actions/`. Always start with `"use server"`.
## Forbidden
- `console.log` in committed code. Use the logger from `@/lib/log.ts`.
- Inline styles. Use Tailwind utility classes via `cn()`.
- Direct database access from components. Route through `/lib/db/` repositories.
- Inline SQL strings. Always use the query builder or stored procedures.
- Hardcoded secrets, API keys, or credentials anywhere.
## State management
- Local state: useState.
- Cross-component state: zustand (or your team's choice). Never prop-drill more than 2 levels.
- Server state: tanstack-query. No useEffect for data fetching.
- URL state: nuqs or framework router params. Never duplicate URL state in local state.
Python 3.12+ conventions, FastAPI patterns, async-first, Pydantic v2, structured logging, no globals. The full production-ready Python rule set.
---
description: Python 3.12+ and FastAPI production conventions, async patterns, Pydantic v2, structured logging.
globs: "**/*.py"
alwaysApply: false
---
# Python / FastAPI Production Rules
## Python
- Python 3.12+ required. Use modern syntax: union types with `|`, `match` statements, walrus operator where it improves readability.
- Type hints on every function signature. No untyped public functions.
- Use `from __future__ import annotations` at the top of every module for cleaner forward references.
- Use `pathlib.Path`, never `os.path` strings.
- Use f-strings. No `.format()` and no `%` formatting.
## Async-first
- All I/O is async. Use `httpx` not `requests`. Use `asyncpg` not `psycopg2`.
- No sync ORM calls in async route handlers. Use `SQLAlchemy 2.x async` or `SQLModel async`.
- `asyncio.gather` for parallel I/O. `asyncio.wait_for` for timeouts.
- Never block the event loop. CPU-bound work goes through `run_in_executor` or a worker queue.
## FastAPI
- Routes live in `app/routers/`. One router per domain.
- Request/response models are Pydantic v2 BaseModel. Use Field with constraints.
- Dependencies via `Depends()`. Never read globals; use dependency injection.
- Exception handlers convert domain errors to HTTPException with structured detail.
- Background tasks: BackgroundTasks for simple, RQ/Celery for durable.
## Pydantic v2
- Use `model_config = ConfigDict(...)` not the old `class Config`.
- Use `Field(default=...)` not `=` defaults for complex types.
- Use `field_validator` and `model_validator` for cross-field validation.
- Use `ConfigDict(frozen=True)` for value objects.
## Logging
- Structured logging via `structlog`. Never `print()`.
- Every log line includes a `request_id` from the FastAPI middleware.
- Log levels: DEBUG for dev only, INFO for normal flow, WARNING for recoverable, ERROR for handled exceptions, CRITICAL for paged.
- Never log secrets, PII, or full request bodies.
## Database
- Migrations via Alembic. One migration per logical change.
- Never modify a migration once merged to main.
- Use repository pattern: routes call services, services call repositories, repositories call ORM.
- Transactions explicit via `async with session.begin():`.
## Testing
- Pytest with `pytest-asyncio`. Mark async tests with `@pytest.mark.asyncio`.
- Use fixtures for database setup. Tear down via transaction rollback, not DELETE.
- Test the integration layer, not just unit. FastAPI's TestClient + a test DB.
## Forbidden
- `from x import *` star imports.
- Mutable default arguments (`def f(items=[])`).
- Global state. Use dependency injection.
- `eval` or `exec` under any circumstances.
- `assert` statements for runtime validation (they get stripped in optimized mode).
Shopify section conventions, scoped CSS, schema validation, the {% raw %} escape pattern, no jQuery, performance budgets.
---
description: Shopify Liquid theme conventions, scoped CSS, schema validation, performance budgets.
globs: "sections/**/*.liquid,snippets/**/*.liquid,templates/**/*.json"
alwaysApply: false
---
# Shopify Liquid Theme Rules
## Sections
- All sections live in `sections/`. One section per file.
- Section file = section template + scoped CSS + schema in one file.
- Scope all CSS via `#{{ section_id }}` selector pattern. Assign at the top of the file:
`{%- assign section_id = 'my-section-' | append: section.id -%}`
- No `!important` on `body`, `html`, `header`, or `footer` selectors.
## Liquid syntax
- Comments inside `{%- liquid -%}` blocks use `#` syntax. NOT `comment`/`endcomment`.
- Wrap ALL JavaScript Liquid examples in raw blocks (raw...endraw with Liquid tag delimiters). Prevents Liquid parsing of variables.
- Use `| escape` on any user-provided string written to HTML attributes.
- Use `| json` for embedding Liquid values in JavaScript.
## Schema
- Range setting rule: `(max - min) / step >= 3`. Always.
- Range setting rule: `(default - min) % step == 0`. Always.
- url-type settings: `default` MUST be empty string or null. Never a placeholder URL.
- Color-scheme settings: include both light and dark schemes if the section spans both.
- Remove dead settings. UnusedAssign warnings indicate config drift.
## CSS
- Self-hosted WOFF2 fonts only. Never `@import url('https://fonts.googleapis.com/...')`.
- One external preconnect maximum (typically reviews/social proof). Shopify Basic limit.
- Use CSS custom properties for color, spacing, font scale. Never hardcoded hex in component CSS.
## JavaScript
- IIFE pattern for section JS. No global namespace pollution.
- No jQuery. Native DOM APIs only.
- Lazy-load images with `loading="lazy"` and `decoding="async"`.
- `fetchpriority="high"` only on the LCP element.
- Use IntersectionObserver for scroll-triggered effects.
## SEO
- Every page must have exactly one `<h1>`. Use semantic heading hierarchy from there.
- Every `<table>` must have a `<caption>` element.
- JSON-LD schemas: globals (Organization, WebSite, BreadcrumbList) owned by theme.liquid.
Page-specific schemas owned by the section. Never duplicate.
- Page-specific schemas use `@id` references back to canonical Person/Organization.
## Performance
- Mobile PageSpeed score >= 75 required. Cap at ~78-82 on Shopify Basic.
- TBT (Total Blocking Time) <= 60ms.
- No inline styles in section templates. All styles in the scoped `<style>` block.
## Forbidden
- `OEKO-TEX` references in any DDS-related content. Never. (GOTS, GRS, OCS, PETA-Approved Vegan, Fair Trade ONLY.)
- Internal links to pages not confirmed live on the storefront.
- `console.log` in committed JS.
- Inline `<script>` blocks with secrets or API keys.
Next.js App Router conventions, server vs client component discipline, server actions, caching strategy, image optimization, the production-grade rule set.
---
description: Next.js App Router production conventions, server/client component discipline, caching, server actions.
globs: "app/**/*,components/**/*,lib/**/*"
alwaysApply: false
---
# Next.js Production Rules
## App Router
- Use the App Router (`app/`). Pages Router (`pages/`) is deprecated for new code.
- Server Components by default. Add `"use client"` only when needed.
- Triggers for `"use client"`: useState, useEffect, event handlers, browser-only APIs.
- Co-locate page-specific components inside the route directory.
## Server vs client discipline
- Keep `"use client"` at the leaves. Don't mark a layout client just to use one hook.
- Server Components can import client components. Client components cannot import server components.
- Pass server-fetched data as props from server to client components. Don't fetch in client.
- Use `Suspense` boundaries around server data. Don't cascade loading states.
## Server actions
- Server actions live in `app/actions/[domain].ts`. Always start the file with `"use server"`.
- Validate inputs with Zod inside the action. Never trust the client.
- Return `{ ok: true, data }` or `{ ok: false, error }` shapes. Don't throw across the boundary.
- Use `revalidatePath` or `revalidateTag` after mutations.
## Data fetching
- Server Components fetch directly. `await fetch(...)` with appropriate `cache` and `revalidate` options.
- Use React's `cache()` to dedupe identical fetches within a request.
- Use `fetch` not custom HTTP libraries; Next.js patches it for cache integration.
- Client-side fetching only when truly needed: tanstack-query, not raw useEffect.
## Caching
- Default fetch behavior: force-cache. Add `cache: 'no-store'` for fresh-every-request data.
- Use `revalidate: N` for ISR. Use `tags: ['name']` for selective invalidation.
- Static pages: no special config needed. Dynamic pages: use the `dynamic = 'force-dynamic'` export.
## Images
- Always use next/image. Never raw `<img>` in production.
- Provide `width` and `height` to prevent CLS. Use `fill` for responsive images with sized parent.
- Use `priority` on the LCP image only. Lazy by default.
- Modern formats: AVIF preferred, WebP fallback. Configure in next.config.
## Forbidden
- `useEffect` for data fetching. Use Server Components or tanstack-query.
- Direct database access from client components.
- API routes in app/api/ for internal calls; use server actions or server components.
- Importing server-only modules in client components. Use `import "server-only"` to enforce.
Universal brand-voice rule pattern for content-heavy projects. Lock tone, forbidden words, sentence structure, and channel-specific patterns. Customize the bracketed placeholders.
---
description: Brand voice, tone, and copy conventions. Applies to all content-bearing files.
globs: "**/*.mdx,**/*.md,**/copy/**/*,**/content/**/*"
alwaysApply: true
---
# [BRAND NAME] Voice & Tone Rules
## Identity
- Brand: [BRAND NAME]
- Audience: [PRIMARY AUDIENCE]
- Purpose: [WHAT THE BRAND DOES]
- One-line positioning: "[POSITIONING STATEMENT]"
## Voice attributes
- [ATTRIBUTE 1]: e.g. "Direct" — short sentences, no hedging
- [ATTRIBUTE 2]: e.g. "Confident" — declarative, not conditional
- [ATTRIBUTE 3]: e.g. "Specific" — concrete examples, not abstractions
- [ATTRIBUTE 4]: e.g. "Warm" — second person, conversational
## Forbidden words and phrases
The agent must NEVER use these:
- "Unleash" / "unlock" / "leverage" / "synergy" / "ecosystem" (overused buzzwords)
- "Just" / "simply" / "easy" (minimizing)
- "Game-changing" / "revolutionary" / "next-gen" (hype)
- "Powered by AI" (vague, says nothing)
- [Add brand-specific forbidden words]
- Emojis in any body copy. Headlines only if explicitly requested.
## Forbidden patterns
- Hashtags in body content. Social-only.
- Rhetorical questions in headlines.
- "We" overuse — three "We" sentences in a row triggers a rewrite.
- Em dashes everywhere — pick spots deliberately.
## Required patterns
- One-sentence paragraphs are allowed and encouraged for emphasis.
- Specific numbers beat round numbers. "47% faster" beats "much faster."
- Active voice beats passive. "We ship every Friday" beats "Releases are shipped on Fridays."
- Verbs before adjectives. "Lasts 10 years" beats "Long-lasting product."
## Channel adaptations
- Headlines: under 8 words. Verb forward. No questions.
- Subheads: 12-20 words. One claim, one supporting detail.
- Body: 15-25 word sentences. One idea per sentence.
- CTAs: 2-4 words. Action verb + outcome. "Get the masterclass" not "Learn more."
- Email subject lines: 35-45 characters. Specific outcome, not curiosity bait.
- Tweets/X posts: 100-150 characters. Hook + payoff.
## Required signoffs / boilerplate
- Every blog post ends with: "[BOILERPLATE LINE]"
- Every product page includes: "[REQUIRED DISCLOSURE]"
- Every email signs off with: "[SIGN-OFF]"
A full Skill (not just a Rule) that drives an iterate-until-tests-pass workflow. Pair with the stop-hook pattern from Module 10 for hands-off completion.
---
name: test-driven-loop
description: Iteratively implement a feature with the test suite as the success criterion. Loops until tests pass or MAX_ITERATIONS is hit.
---
# Test-Driven Loop Skill
## When to use
Invoke this skill when:
- The acceptance criteria can be expressed as failing tests
- You want hands-off completion of a well-scoped feature
- You're willing to let the agent run for 3-5 iterations
## Workflow
### 1. Write the failing tests first
Before implementing anything, write the tests that define done.
- Unit tests for any new pure logic
- Integration tests for any new boundary crossing (HTTP, DB, queue)
- One end-to-end test that proves the user-visible behavior
Run the test suite. Confirm the new tests fail for the right reason
(missing implementation, not test bugs).
### 2. Create the scratchpad
Create `.cursor/scratchpad.md` with the plan:
- Feature: [name]
- Test files: [list]
- Implementation files to create/modify: [list]
- Open questions: [list, or "none"]
### 3. Implement, one goal at a time
Work toward the first goal. Run tests. If green, move to next goal.
If red, read the failure, fix the root cause (not the test), retry.
### 4. The stop-hook continues the loop
This skill pairs with `.cursor/hooks/grind.ts` (see Module 10).
When the agent's run completes:
- If scratchpad contains "DONE", stop
- If iteration count >= MAX_ITERATIONS, stop and report failure
- Otherwise, the hook re-prompts the agent to continue
### 5. Mark DONE
Once all tests pass, update `.cursor/scratchpad.md`:
- Add "DONE" anywhere in the file
- Add a short summary of what was implemented
- Add any followup work to a separate "Followup" section
## Constraints
- Never modify test files to make them pass. Tests define the contract.
- Never disable failing tests. If a test is wrong, fix the test in a separate commit.
- Pause if a test failure reveals a design problem (the spec is wrong, not the code).
- Stop if MAX_ITERATIONS is hit. Don't loop indefinitely.
## References
- See `references/test-writing-patterns.md` for the testing patterns this team uses
- See `references/red-green-refactor.md` for the canonical TDD cycle
- Pair with the test-runner subagent (`.cursor/agents/test-runner.md`) for parallel test execution
Eight common workflows distilled into reusable prompt templates. Save them as Custom Commands in .cursor/commands/ or paste-and-go.
Bootstrap the entire .cursor/ directory for a new repo. Rules, hooks, mcp.json, ignore, one starter skill. Cursor reads your existing code to infer conventions.
Replace a pattern across many files. Worktree + plan + file-by-file implementation + test after each. Uses Build in Parallel when files are independent.
Generate full test coverage for a module. Write, run, fix bugs in source revealed, repeat until coverage > 80% and all green.
Audit a directory for SQL injection, XSS, exposed secrets, auth bypass, insecure dependencies. Each finding traces input to sink.
Bump a major dependency. Read changelog, identify breaking changes, apply migration file-by-file, run tests after each. Rollback plan included.
Convert a Figma frame (via Figma MCP) into a React component using existing patterns. Match spacing, typography, color exactly.
Use the Explore subagent to research how something works. Returns a focused summary of relevant files and conventions. Good before any new feature.
Replace library/framework A with B. Phase plan, per-phase test verification, rollback at each phase. Worktree isolated.
Estimates for a developer who uses Cursor 4-6 hours/day on a Pro plan. Actual burn varies wildly with model selection and workflow.
| Surface | Light user | Medium user | Heavy user |
|---|---|---|---|
| Tab autocomplete | ~$0 (Auto) | ~$0 (Auto) | ~$0 (Auto) |
| Cmd+L Chat (Auto) | ~$0 | ~$0 | ~$0 |
| Composer 2 multi-file | $2-5 | $8-15 | $20-40 |
| Agent Mode (Composer 2) | $3-8 | $15-30 | $40-80 |
| Frontier models (Opus, GPT-5) | $5-15 | $30-80 | $100-300 |
| Cloud Agents | $0-5 | $10-25 | $30-100 |
| Bugbot (5 PRs/week) | $15-30 | $20-30 | $25-45 |
| Bugbot (25 PRs/week) | — | $100-150 | $120-180 |
| Approximate total | $25-60 | $80-180 | $200-700 |
| Right plan | Pro ($20) | Pro+ ($60) or Ultra | Ultra ($200) |
If your monthly Cursor bill is more than 5x your Pro subscription price, your team has a model-selection problem, not a Cursor problem. Switch to Auto mode by default. Reserve frontier models for the genuinely hard 10% of tasks. Make Composer 2 the team default. Most bills drop 60-80% within a week of applying this discipline.
Run through this checklist before declaring your Cursor setup production-ready. Thirty-five items across seven categories. Tick them off as you go.
.cursor/ directory created in repo root. Committed (without secrets)..cursorignore covers build outputs, deps, secrets, large assets.AGENTS.md or .cursor/rules/000-style-guide.mdc exists with project-wide conventions..mdc file: description, globs (if scoped), alwaysApply..cursor/mcp.json at project root with 3-6 essential servers.${env:VAR_NAME}. No hardcoded API keys.main./worktree command).git reset path.BUGBOT.md exists with team-specific required and forbidden patterns.Setup and Rules items: one-time on initial setup. MCP and Agent Safety: revisit when adding new servers or plugins. Bugbot and Cost: weekly review during the first month, monthly thereafter. Production: quarterly. Make the audit a calendar event, not a vibe.
Sixteen questions answered. Mirrors the FAQPage JSON-LD schema for SEO.
Twelve modules. One hundred prompts. Six skill packages. Eight production templates. The honest decision matrix. The cost calculator. The 35-item checklist. Everything you need to go from never-touched-Cursor to shipping production-grade multi-agent workflows.