| Pre-install decision |
|---|
| Clear source, High execution risk, OpenClaw | Clear source, High execution risk, Cursor | Clear source, High execution risk, Universal |
|---|
| unexpected code execution, identity privilege abuse, data exfiltration | unexpected code execution, identity privilege abuse, data exfiltration | unexpected code execution, data exfiltration, human approval gap |
|---|
| missing license, broad permissions, shell without guardrails | missing license, broad permissions, shell without guardrails | missing license, shell without guardrails, network without allowlist |
|---|
| Permission review, Network, Secrets, Command | Permission review, Network, Secrets, Command | Permission review, Network, Command |
|---|
| | 65% | 63% |
|---|
| Source & provenance |
|---|
| Dev & Engineering | Dev & Engineering | Data & Analytics |
|---|
| 2026-03-31 | 2026-03-29 | 2026-04-02 |
|---|
| Risk & permission signals |
|---|
| needs credentials, network access, runs shell, writes files | needs credentials, network access, runs shell | runs shell |
|---|
| requires binary: node, requires binary: npx, requires binary: gp-cli, verify source provenance before install | verify source provenance before install | verify source provenance before install |
|---|
| Install & compatibility |
|---|
| OpenClaw | Cursor | Universal |
|---|
| 65 | 65 | |
|---|
