Is Cursor Safe? I Scanned 100 Apps. 67% Had Critical Vulns.

So I've been building ShipSafe - security scanner for AI-generated code - and a few weeks ago I got curious. like, actually curious. not "I wonder if AI code has bugs" curious, like "how bad is it really and am I just being paranoid" curious. I grabbed 100 Cursor-built repos off GitHub. not tutorials, not apps. real production stuff - SaaS tools, internal dashboards, a couple e-commerce s, bunch of API backends. found them by searching for.cursorrules files and Cursor-style commit patterns. then I scanned all of them with ShipSafe. 67.