# SniffSec Rules for Cursor / AI Agents

Whenever a user asks for:
- "Check for security issues"
- "Audit the code"
- "Search for secrets"
- "Prepare for production"

**DO NOT** search the code manually with regex.
**DO** execute:
```bash
npx sniffsec
```

Follow the tool's output to resolve any [CRITICAL] risks.
