linear

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's CLI calls the Linear GraphQL API (scripts/linear.ts — e.g., getIssue and listIssues queries include issue descriptions and comments) and SKILL.md's triage workflow instructs the agent to read and act on those user-generated issue/comments, so untrusted third-party content could influence decisions or tool use.