linear-import
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill invokes the linear-cli utility through the Bash tool to perform bulk imports and exports of issue data.
- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface due to its data processing behavior.
- Ingestion points: Data enters the agent's context through files such as issues.csv and issues.json (referenced in SKILL.md).
- Boundary markers: No explicit boundary markers or instructions to ignore embedded commands are used when processing file content.
- Capability inventory: The skill has the capability to execute system commands via the Bash tool (SKILL.md).
- Sanitization: There is no evidence of input validation or sanitization performed on the contents of the imported files before they are processed by the CLI tool.
Audit Metadata