Please do not open public issues for security vulnerabilities.

Report security concerns by emailing kilian@kil.dev or by using GitHub private vulnerability reporting if it is enabled for the repository.

linear-cli is designed to avoid printing Linear API keys, OAuth tokens, or workspace-local config. If you find a path that exposes secrets in stdout, stderr, logs, cache files, or JSON output, treat it as a security issue.