linear-views
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill relies on executing 'linear-cli' via Bash to perform operations like listing, creating, and updating views.
- [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection because it processes untrusted data from an external API without boundary markers or sanitization. * Ingestion points: Data enters the agent's context through the output of 'linear-cli' list and get commands in SKILL.md. * Boundary markers: Absent; no delimiters are used to separate external data from system instructions. * Capability inventory: The skill has the capability to execute Bash commands and interact with the Linear workspace. * Sanitization: Absent; the skill does not specify any validation or filtering of the content returned by the CLI tool.
Audit Metadata