adelaidasofia-linear-mcp

v0.3.2 suspicious
4.0
Medium Risk

Multi-workspace Linear MCP server with PAT auth — drop-in replacement for the official OAuth-only Linear connector.

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package shows some signs of potential risk due to its new maintainer and lack of community engagement, despite having low risks in network calls, shell execution, obfuscation, and credential harvesting.

  • New maintainer with low community engagement
  • Potential network misalignment with package description
Per-check LLM notes
  • Network: The presence of network calls is not inherently suspicious but should be reviewed to ensure they align with the package's intended functionality.
  • Shell: No shell execution patterns were detected.
  • Obfuscation: No obfuscation patterns detected, indicating low risk.
  • Credentials: No credential harvesting patterns detected, indicating low risk.
  • Metadata: The maintainer seems new or inactive, and the repository lacks community engagement, which may indicate potential risk.

🔬 Heuristic Checks

Outbound Network Calls score 1.5

Found 1 network call pattern(s)

  • ient per token.""" return httpx.Client( base_url=API_URL, timeout=TIMEOUT,
Code Obfuscation

No obfuscation patterns detected

Shell / Subprocess Execution

No shell execution patterns detected

Credential Harvesting

No credential harvesting patterns detected

Typosquatting

No typosquatting candidates detected

Registered Email Domain

No author email provided

Suspicious Page Links

All external links appear legitimate

Git Repository History score 2.5

Git history flags: Repository has zero stars and zero forks

  • Repository has zero stars and zero forks
Maintainer History score 2.0

1 maintainer concern(s) found

  • Author "Adelaida Diaz-Roa" appears to have only 1 package on PyPI (new or inactive account)
Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with adelaidasofia-linear-mcp 
Create a mini-project named 'LinearWorkspacesManager' using the Python package 'adelaidasofia-linear-mcp'. This project will serve as a command-line interface (CLI) tool for managing multiple workspaces within the Linear platform, leveraging Personal Access Token (PAT) authentication for secure access. The CLI tool should allow users to perform basic operations such as listing all workspaces, switching between workspaces, and executing tasks within a selected workspace. Additionally, the tool should provide options for configuring PATs and handling workspace-specific settings. Utilize the 'adelaidasofia-linear-mcp' package to handle multi-workspace management and authentication seamlessly. Ensure the project includes clear documentation on setup, usage, and contribution guidelines. The project should also include unit tests to verify its functionality.