cursor-api-key-management

Configure BYOK API keys for OpenAI, Anthropic, Google, Azure, and custom models in Cursor. Triggers on "cursor api key", "cursor openai key", "cursor anthropic key", "own api key cursor", "BYOK cursor", "cursor azure key".

Quality

66%

Does it follow best practices?

Impact

—

No eval scenarios have been run

Securityby

Passed

No known issues

Optimize this skill with Tessl

npx tessl skill review --optimize ./plugins/saas-packs/cursor-pack/skills/cursor-api-key-management/SKILL.md

Quality

Content

42%

Reviews the quality of instructions and guidance provided to agents. Good implementation is clear, handles edge cases, and produces reliable results.

The skill provides highly actionable, provider-specific configuration steps with concrete UI paths and URLs, which is its primary strength. However, it is excessively verbose, including substantial content Claude doesn't need (cost-saving strategies, general security advice, enterprise governance patterns) and time-sensitive pricing data. The content would benefit greatly from splitting into a concise SKILL.md with provider setup steps and separate reference files for cost, security, and troubleshooting.

Suggestions

Remove or drastically reduce sections on cost management, security best practices, and enterprise considerations — these are general knowledge Claude already has and inflate the token cost significantly.

Move the pricing table, troubleshooting table, and team key management guidance into separate bundle files (e.g., PRICING.md, TROUBLESHOOTING.md) and reference them from the main skill.

Add a verification step after each provider configuration (e.g., 'Send a test message in Chat and confirm the model responds — check the model indicator in the response header').

Fix the numbered list restart bug in the Custom OpenAI-Compatible Endpoints section (steps 1-4 then restart at 1 instead of continuing to 5-6).

Dimension	Reasoning	Score
Conciseness	Significantly verbose for a configuration guide. Includes extensive information Claude already knows (security best practices, cost-saving strategies, enterprise considerations, team key management patterns). The token cost table with specific prices is time-sensitive and will become stale. Much of this content (cost management, security, enterprise considerations) is general knowledge padding rather than Cursor-specific configuration instructions.	1 / 3
Actionability	Provides concrete, step-by-step configuration instructions for each provider with specific UI paths (e.g., 'Cursor Settings > Models > check Use own API key'), exact URLs for key generation, key format patterns, and specific endpoint URLs for custom providers. The troubleshooting table maps specific errors to fixes.	3 / 3
Workflow Clarity	Steps are clearly sequenced for each provider setup, and the key rotation workflow includes a verification step. However, there's no validation checkpoint after entering keys (e.g., 'test by sending a message in Chat and confirming the response uses your key'). The numbered list for custom endpoints restarts at 1 after the code block, which is a formatting error that could cause confusion.	2 / 3
Progressive Disclosure	This is a monolithic wall of text at ~180 lines covering configuration, cost management, security, enterprise considerations, and troubleshooting all inline. Sections like cost management, security best practices, enterprise considerations, and the pricing table should be split into separate reference files. No bundle files exist to offload this content.	1 / 3
	Total	7 / 12 Passed

Description

89%

Based on the skill's description, can an agent find and select it at the right time? Clear, specific descriptions lead to better discovery.

This is a solid skill description with excellent trigger terms and clear distinctiveness. It effectively communicates both what the skill does and when to use it, with explicit trigger phrases. The main weakness is that the 'what' portion could list more specific actions beyond just 'Configure' to better convey the full scope of the skill.

Suggestions

Expand the capability description with more specific actions, e.g., 'Configure, verify, and troubleshoot BYOK API keys' to improve specificity.

Dimension	Reasoning	Score
Specificity	It names the domain (BYOK API key configuration in Cursor) and lists specific providers (OpenAI, Anthropic, Google, Azure, custom models), but describes only one action ('Configure') rather than listing multiple concrete actions like troubleshooting, verifying, or rotating keys.	2 / 3
Completeness	Clearly answers both 'what' (configure BYOK API keys for multiple providers in Cursor) and 'when' (explicit trigger phrases listed with 'Triggers on' clause), providing explicit guidance on when to select this skill.	3 / 3
Trigger Term Quality	Includes a strong set of natural trigger terms that users would actually say, covering multiple provider variations ('cursor api key', 'cursor openai key', 'cursor anthropic key', 'own api key cursor', 'BYOK cursor', 'cursor azure key'). These are realistic search phrases.	3 / 3
Distinctiveness Conflict Risk	Highly distinctive with a clear niche: BYOK API key configuration specifically in Cursor. The combination of 'BYOK', specific provider names, and 'Cursor' makes it very unlikely to conflict with other skills.	3 / 3
	Total	11 / 12 Passed

Validation

81%

Warnings & errors only

Checks the skill against the spec for correct structure and formatting. All validation checks must pass before discovery and implementation can be scored.

Validation — 9 / 11 Passed

Validation for skill structure

Criteria	Description	Result
allowed_tools_field	'allowed-tools' contains unusual tool name(s)	Warning
frontmatter_unknown_keys	Unknown frontmatter key(s) found; consider removing or moving to metadata	Warning

	Total	9 / 11 Passed

Repository: jeremylongshore/claude-code-plugins-plus-skills
Commit: 00c0702

Reviewed: 3 days ago

Table of Contents

Discovery Implementation Validation

Is this your skill?

If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.