composio-linear

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SKILL.md and references/actions.md explicitly call the Composio HTTP endpoints to List/Get Issues and Comments and to Run GraphQL queries (e.g., LINEAR_LIST_LINEAR_ISSUES, LINEAR_GET_LINEAR_ISSUE, LINEAR_CREATE_LINEAR_COMMENT, LINEAR_RUN_QUERY_OR_MUTATION), which causes the agent to fetch and interpret user-generated Linear issue/comment content from a third-party service via backend.composio.dev that could contain instructions influencing subsequent actions.