nice project. I've been working on something in the same space but for local Cursor instances instead of cloud agents. the approach is different, I connect via Chrome DevTools Protocol to the running Cursor Electron app and stream the agent state over websocket to a mobile web UI (with optional Telegram integration as well).

interesting to see the security discussion here. with the local approach you avoid the cloud API auth surface entirely since everything stays on your machine, but you trade that for the fragility of DOM scraping since Cursor updates can break selectors at any time.

curious if you've looked at Cursor's ACP (the local variant) as a cleaner interface than CDP/DOM polling? I've been eyeing it but haven't switched yet.