You’re not doing anything wrong. This is a known bug — Linear MCP authentication doesn’t currently work in automations (including Security Review). The OAuth redirect URI used by automations isn’t accepted by Linear’s authorization server, so the Linear MCP server enters an unauthenticated state at runtime. The agent then correctly reports that it can’t use those tools.
The same issue was reported in this thread, and our team is tracking the fix. Unfortunately, there’s no workaround for the native cursor.com/automations flow right now.
I’m merging this thread into the existing one so updates are in one place.