Linear MCP Integration
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Data Processing (SAFE): The skill interacts with the Linear API through a Model Context Protocol (MCP) server. It uses standard function calls for project management tasks and does not expose sensitive local files or hardcoded API keys.
- Indirect Prompt Injection (LOW): The skill possesses a significant attack surface for indirect prompt injection because it fetches and processes content from external, collaborator-controlled sources.
- Ingestion points: Data is ingested from Linear issue descriptions, comments (via
mcp_Linear_get_issue), and GitHub Pull Request titles/bodies. - Boundary markers: Absent. There are no instructions provided to the agent to treat fetched content as data rather than instructions or to use delimiters.
- Capability inventory: The skill has powerful write capabilities, including
mcp_Linear_update_issue,mcp_Linear_create_comment, and the ability to create/update projects and documents. - Sanitization: No sanitization or validation of the fetched external content is performed before the agent uses it for validation logic or status updates.
Audit Metadata