linear-webhooks

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly receives and parses raw HTTP POST webhook payloads from Linear (e.g., the POST /webhooks/linear endpoint shown in SKILL.md and examples/express/src/index.js and examples/fastapi/main.py), which are untrusted third-party/user-generated content that the agent processes and routes into behavior.