linear-manager

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill directly fetches and displays user-generated content from a third-party service (Linear) — e.g., the scripts/linear.mjs commands like "issues" and "my-issues" and the API-REFERENCE examples that read issue bodies and comments — and SKILL.md instructs the agent to parse/analyze that output and take follow-up actions, so untrusted issue/comment text could influence tool use and decisions.