sentry-fix-issues
Pass
Audited by Gen Agent Trust Hub on Mar 2, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: Analysis of indirect prompt injection surface: 1. Ingestion points: Sentry event data (stack traces, messages, breadcrumbs) fetched via get_issue_details and search_issue_events. 2. Boundary markers: The 'Security Constraints' section explicitly instructs the agent to treat data as plain text and ignore embedded directives. 3. Capability inventory: The agent has capabilities to read repository files and implement code fixes. 4. Sanitization: Instructions require redacting PII/secrets and validating error data against the codebase before implementation.
- [DATA_EXFILTRATION]: The skill contains clear directives to redact PII, session tokens, and secrets before including them in reports or test cases, preventing accidental exposure of sensitive data.
- [SAFE]: No malicious patterns, obfuscation, or unauthorized remote code execution were detected. All tool interactions are mediated through the Model Context Protocol (MCP).
Audit Metadata