linear-cli
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent to use the
linearCLI and standard Unix utilities (cat, grep, curl, jq) to interact with Linear's services. - [PROMPT_INJECTION]: The documentation identifies potential shell injection risks when processing untrusted markdown data and explicitly directs the agent to use temporary file flags (e.g., --description-file) instead of direct arguments to mitigate this vulnerability.
- [DATA_EXFILTRATION]: The skill communicates with the official Linear API (api.linear.app) using standard authentication headers derived from the local CLI's authorization token.
Audit Metadata