Linear CLI
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- NO_CODE (SAFE): The skill consists solely of Markdown files (SKILL.md, REFERENCE.md) providing usage examples. It does not contain any code, scripts, or configuration files.
- Indirect Prompt Injection (SAFE): The skill documents how to read and write data to an external platform (Linear). While this creates a theoretical surface for indirect prompt injection if the agent processes malicious issue content, the skill itself does not implement the logic or provide a vulnerable implementation.
- Ingestion points: linear-cli issue, linear-cli search, linear-cli comments (reading issue data from Linear).
- Boundary markers: None specified in the documentation.
- Capability inventory: linear-cli create, linear-cli update (modifying Linear issues).
- Sanitization: Not applicable as no implementation code is provided.
Audit Metadata