Back to skill
Skillv3.2.0
ClawScan security
Linear CLI · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 13, 2026, 12:17 PM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- This is an instruction-only skill that wraps the local linear CLI: its requested actions and files align with its description and it does not request unrelated credentials or installs.
- Guidance
- This skill is a documentation-heavy wrapper around the local `linear` CLI and appears internally consistent. Before installing or using it: 1) ensure you have a trusted `linear` binary installed from the linked repository; 2) understand that the CLI uses your Linear credentials (configured via `linear auth` or .linear.toml) — do not pass files or stdin that contain secrets unless you intend the CLI to consume them; 3) be cautious when invoking commands that accept file paths or stdin (bulk-file, content-file, bulk-stdin) to avoid accidental exposure of local files; and 4) review any use of curl or raw API commands if you plan to let the agent execute autonomously, since those could make arbitrary network requests if used improperly.
Review Dimensions
- Purpose & Capability
- okThe skill's name/description match the instructions and reference docs: it expects a local `linear` CLI and documents commands for reading/mutating Linear resources. It does not require unrelated environment variables, binaries, or config paths.
- Instruction Scope
- noteSKILL.md tells the agent to run the `linear` CLI and to use file/stdin flags (e.g., --content-file, --bulk-file, --bulk-stdin) and occasional interactive editor flows. Allowed-tools includes Bash(linear:*) and Bash(curl:*). This is reasonable for a CLI wrapper, but means an agent run can read local files passed to those flags and (because curl is allowed) perform network calls if invoked that way — review any file paths you give the agent and be cautious about piping secrets or system config into the CLI.
- Install Mechanism
- okThere is no install spec (instruction-only), so nothing will be written to disk by the skill itself. The README points to a GitHub repo for installing the `linear` binary — that is external to the skill and should be reviewed/trusted by the user before installation.
- Credentials
- noteThe skill declares no required env vars or credentials (none in requires.env). Operationally, the `linear` CLI needs Linear credentials (auth configured via `linear auth` or .linear.toml) to perform mutations — this is expected and proportional, but those secrets will be used by the CLI if present. The skill does not ask for unrelated credentials.
- Persistence & Privilege
- okalways is false and the skill is user-invocable; it does not request persistent/global privileges or modify other skills' configurations. Autonomous invocation is allowed by default but is not combined with other red flags here.