Skills
skills/editframe/skills/linear-cli/Gen Agent Trust Hub

linear-cli

Warn

Audited by Gen Agent Trust Hub on Apr 30, 2026

Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill requires the installation of a CLI tool via brew install schpet/tap/linear, which downloads code from a third-party repository not affiliated with the vendor or a recognized trusted organization.
  • [COMMAND_EXECUTION]: The skill makes extensive use of shell commands, specifically the linear CLI and a local repository script scripts/wait-for-telecine-action.
  • [PROMPT_INJECTION]: The skill presents an Indirect Prompt Injection surface.
  • Ingestion points: The agent is instructed to read issue descriptions and comments from Linear (via linear issue view in SKILL.md).
  • Boundary markers: No delimiters or isolation instructions are provided for the external issue content.
  • Capability inventory: The skill provides the agent with capabilities to execute shell commands, perform API mutations via linear api, and modify issue states.
  • Sanitization: No sanitization or validation of the retrieved issue content is implemented.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Apr 30, 2026, 04:52 PM