linear-status-check

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and ingests user-generated Linear issues via manus-mcp-cli (search_projects/search_issues) and reads issue titles/descriptions/acceptance criteria (and clones/analyzes GitHub repos) as part of its workflow, which exposes the agent to untrusted third-party content that could carry indirect prompt injection.