Skills
skills/szoloth/skills/linear-manager/Gen Agent Trust Hub

linear-manager

Warn

Audited by Gen Agent Trust Hub on Feb 26, 2026

Risk Level: MEDIUMDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
  • [DATA_EXFILTRATION]: The skill script linear.mjs is designed to access the .env file to retrieve the LINEAR_API_KEY. This involves reading a sensitive file path that typically contains private credentials.
  • [PROMPT_INJECTION]: The skill provides a vector for indirect prompt injection by retrieving and displaying external content from the Linear API.
  • Ingestion points: Issue titles, descriptions, and project data are fetched through linear.mjs.
  • Boundary markers: No delimiters or protective instructions are utilized to isolate untrusted external content from the agent's instruction stream.
  • Capability inventory: The skill performs subprocess execution through the npm run linear commands, which can be influenced by instructions embedded in the external data.
  • Sanitization: Data retrieved from Linear is presented without validation or sanitization.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Feb 26, 2026, 10:19 PM