Home / Integrations / Cursor
// INTEGRATION

Use Intercept with Cursor

Add policy enforcement to Cursor in one line.

Config file: .cursor/mcp.json in project root. Global: ~/.cursor/mcp.json

// BEFORE

A standard MCP server in your Cursor config -- no controls.

.cursor/mcp.json 
{
  "mcpServers": {
    "github": {
      "command": "npx",
      "args": ["-y", "@modelcontextprotocol/server-github"],
      "env": {
        "GITHUB_PERSONAL_ACCESS_TOKEN": "ghp_..."
      }
    }
  }
}
// WITH INTERCEPT

Wrap the server command with Intercept. Same config structure, policy enforced.

.cursor/mcp.json 
{
  "mcpServers": {
    "github": {
      "command": "npx",
      "args": [
        "-y", "@policylayer/intercept",
        "-c", "policy.yaml",
        "--",
        "npx", "-y", "@modelcontextprotocol/server-github"
      ],
      "env": {
        "GITHUB_PERSONAL_ACCESS_TOKEN": "ghp_..."
      }
    }
  }
}
// WHAT YOU GET
Rate limits
Cap tool calls per minute, hour, or day
Access controls
Allow, deny, or conditionally gate any tool
Spend caps
Limit financial operations with daily thresholds
Audit logs
Full trace of every tool call and policy decision
// EXAMPLE POLICY
policy.yaml 
version: "1"
default: deny

tools:
  list_customers:
    rules:
      - action: allow
        rate_limit: 30/minute

  create_refund:
    rules:
      - name: "daily cap"
        rate_limit: 10/day

  delete_repository:
    rules:
      - action: deny
// INSTALL
npx -y @policylayer/intercept
github.com/policylayer/intercept →
// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.