linear-worktree
Pass
Audited by Gen Agent Trust Hub on Apr 18, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent to execute standard git commands, including
git fetch,git worktree add, andgit rev-parse. These operations are routine for local repository management and align with the skill's stated purpose. - [INDIRECT_PROMPT_INJECTION]: The skill ingests untrusted data from Linear URLs and issue descriptions. To mitigate risks, the instructions include a robust 'slugification' process that requires the agent to strip special characters such as backticks, parentheses, and quotes before using the input in shell commands. This sanitization significantly reduces the surface area for indirect injection via issue metadata.
Audit Metadata