sentry-otel-exporter-setup
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONREMOTE_CODE_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill retrieves the OpenTelemetry Collector binary and configuration templates from official OpenTelemetry GitHub repositories. These are recognized as well-known and trusted sources.
- [COMMAND_EXECUTION]: The skill performs necessary system operations for setup, including architecture detection using
uname, file management withtarandchmod, and Docker container management. - [REMOTE_CODE_EXECUTION]: As its primary function, the skill downloads and executes the OpenTelemetry Collector binary. The source is a well-known technology project, and the behavior is essential for the skill's purpose.
- [PROMPT_INJECTION]: The skill has an indirect prompt injection surface as it fetches external templates and documentation via WebFetch.
- Ingestion points: Remote configuration and documentation files from GitHub in Step 4.
- Boundary markers: No explicit delimiters or instructions to ignore embedded content are provided for the fetched files.
- Capability inventory: The skill has the capability to execute system commands and manage services (Steps 2, 5, and 6).
- Sanitization: No specific validation or sanitization is applied to the content of the external files before processing.
Audit Metadata