linear
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFE
Full Analysis
- Internal Tool Utilization: The skill relies on an internal client tool (
linear_graphql) which leverages the existing authenticated session. This is a secure approach as it avoids the need for hardcoded credentials or manual token management within the skill instructions. - Narrow Data Scoping: The instructions explicitly advise keeping queries and mutations narrowly scoped and only requesting necessary fields. This practice minimizes the surface area for accidental data exposure.
- Secure External Operations: For file uploads, the skill uses a multi-step process involving signed URLs. It specifically restricts shell usage to these ephemeral, pre-authorized URLs provided by the API, reducing the risk of unauthorized network operations.
- Input Guidance: The skill provides clear examples for GraphQL introspection and common workflows (issue lookups, state changes, and commenting). This structured approach helps ensure that inputs to the underlying tool are well-formed and predictable.
- No External Dependencies: The skill does not import any external Python or Node.js packages and does not perform any remote code execution from untrusted sources.
Audit Metadata