SlowMist has alerted users to potential security risks associated with Vibe Coding and popular integrated development environments (IDEs). A vulnerability has been identified where using the “Open Folder” function in a project can execute system commands on Windows and macOS. Cursor users are especially at risk, as accessing a malicious project directory could compromise their systems. In light of several incidents affecting AI coding users, developers are urged to refrain from opening projects from untrusted sources.
Is There a Security Risk with Vibe Coding and IDEs?
