ClawHub

Linear

v1.0.3

Linear API integration with managed OAuth. Query and manage issues, projects, teams, cycles, and labels using GraphQL. Use this skill when users want to create, update, or query Linear issues, search for tasks, manage projects, or track work. For other third party apps, use the api-gateway skill (https://clawhub.ai/byungkyu/api-gateway). Requires network access and valid Maton API key.

18· 12.4k·7 current·9 all-time
by@byungkyu
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
medium confidence
Purpose & Capability
Name/description (Linear API via managed OAuth) match the runtime instructions: all examples call Maton endpoints (gateway.maton.ai, ctrl.maton.ai) to proxy GraphQL requests to api.linear.app. Required env var (MATON_API_KEY) is appropriate for a gateway-based integration.
Instruction Scope
SKILL.md only instructs POSTing GraphQL queries to Maton endpoints, managing connections via ctrl.maton.ai, and setting MATON_API_KEY. It does not instruct reading local files, other env vars, or contacting unexpected endpoints.
Install Mechanism
No install spec or downloadable code is present (instruction-only), so nothing is written to disk or executed beyond normal HTTP requests—this is the lowest-risk install profile.
Credentials
Only MATON_API_KEY is required, which is proportionate for a gateway that performs OAuth on behalf of the user. Note: the key grants Maton access to proxied Linear operations, so the user must trust Maton's handling of tokens and data.
Persistence & Privilege
always is false and the skill is user-invocable; there is no indication it requests persistent system privileges or modifies other skills/config. Autonomous invocation is allowed (platform default) but not combined with other concerning privileges.
Assessment
This skill appears to be a straightforward set of instructions for using Maton's gateway to access Linear. Before installing or providing MATON_API_KEY: 1) Understand that the API key gives Maton the ability to act on your behalf against Linear (read/write depending on scopes) — review Maton's documentation, privacy policy, and token scope. 2) Verify the Maton endpoints (gateway.maton.ai, ctrl.maton.ai, maton.ai) and that the OAuth flow uses the official Linear connect URL returned for authorization. 3) Because the skill has no code to audit and no homepage, prefer to obtain Maton credentials only from the official Maton site and consider creating a limited-scope key or a revocable token. 4) If you need higher assurance, request the publisher/owner identity or a repository with code you can review; otherwise revoke the MATON_API_KEY when no longer needed.

Like a lobster shell, security has layers — review code before you run it.

latestvk97eyjwzf371cqfnq5923vhtex80x637

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🧠 Clawdis
EnvMATON_API_KEY

Comments