New ask Hacker News story: Ask HN: Why is Cursor IDE accessing all my env vars?
Ask HN: Why is Cursor IDE accessing all my env vars?
5 by iyn | 3 comments on Hacker News.
Recently I tried playing with https://www.cursor.com/ but got spooked by the LuLu alert (https://ift.tt/IfCoxNV) when launching the app, where the process args included "JSON.stringify(process.env)" part, see screenshot here: https://ift.tt/98IA5GL Is this... normal? I don't understand why they might want to serialize/access all of my env vars. Does anyone have a suggestion for that behaviour? I'm probably missing some reasonable explanation, happy to learn more. I've been running a lot of stuff in VMs lately anyway, but don't want to end up having to spin up a VM for the core app like a code editor. How do you all deal with untrusted (but not really malware-level untrusted) software?
5 by iyn | 3 comments on Hacker News.
Recently I tried playing with https://www.cursor.com/ but got spooked by the LuLu alert (https://ift.tt/IfCoxNV) when launching the app, where the process args included "JSON.stringify(process.env)" part, see screenshot here: https://ift.tt/98IA5GL Is this... normal? I don't understand why they might want to serialize/access all of my env vars. Does anyone have a suggestion for that behaviour? I'm probably missing some reasonable explanation, happy to learn more. I've been running a lot of stuff in VMs lately anyway, but don't want to end up having to spin up a VM for the core app like a code editor. How do you all deal with untrusted (but not really malware-level untrusted) software?
Comments
Post a Comment