linear-sop
Pass
Audited by Gen Agent Trust Hub on Apr 19, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it instructs the agent to read and parse content from external ticket descriptions and acceptance criteria.
- Ingestion points: Processes issue descriptions and acceptance criteria during ticket reading and parsing operations (SKILL.md).
- Boundary markers: No specific delimiters or instructions to ignore embedded commands within the processed ticket data are provided.
- Capability inventory: The skill possesses the capability to perform various ticket system operations, including reading, creating, and updating issues and comments.
- Sanitization: There is no evidence of content sanitization, validation, or escaping before processing external ticket data.
Audit Metadata