Environment variable access combined with network send.
Critical
- Code
- suspicious.env_credential_access
- Location
- scripts/linear.mjs:35
Security audit
Security checks across malware telemetry and agentic risk
This skill is a clearly scoped Linear helper that uses an environment API key to read and optionally update Linear data, with write actions explicitly gated.
Install only if you are comfortable giving this skill access to the Linear workspace permissions held by your LINEAR_API_KEY. Use a least-privileged key if available, keep the key session-scoped, and run --execute write commands only after confirming the exact Linear issue, project, or comment change you want.
64/64 vendors flagged this skill as clean.
Detected: suspicious.env_credential_access