linear
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: Installs the official Membrane CLI package (
@membranehq/cli) from the NPM registry, which is the intended tool for managing the integration lifecycle. - [COMMAND_EXECUTION]: Executes
membraneCLI commands to handle authentication, connection setup, and API interactions. These commands are scoped to the skill's purpose and use the platform's managed authentication flow. - [SAFE]: No malicious patterns such as prompt injection, credential harvesting, or unauthorized data exfiltration were detected. The skill follows best practices by delegating credential management to the Membrane platform.
- [SAFE]: While the skill processes external data from Linear (issues, comments), which is a surface for indirect prompt injection, it does not perform unsafe operations like arbitrary code execution on that data.
Audit Metadata