Cursor has successfully rolled out agent sandboxing across macOS, Linux, and Windows over the past three months, allowing agents to operate securely within a controlled environment while minimizing user interruptions. This new feature is particularly significant for enterprise customers like NVIDIA, as it reduces approval fatigue by decreasing the frequency of requests for user permissions—sandboxed agents halt 40% less often than their unsandboxed counterparts. Cursor’s sandboxing employs platform-native security primitives, such as Seatbelt on macOS and Landlock and seccomp on Linux, which help in balancing agent functionality and risk management. The implementation aims to enhance security while maintaining efficiency as agents transition to more complex workflows involving direct interactions with production systems.
Cursor enhances agent security with sandboxing on macOS, Linux, Windows
