sentry-incident-runbook
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill processes data from Sentry issue reports, which is a potential vector for indirect prompt injection if an attacker can control the content of an error log.\n
- Ingestion points: Sentry API details and events accessed during triage.\n
- Boundary markers: No explicit instructions or delimiters are used to isolate external data.\n
- Capability inventory: Tools for file interaction (
Read,Write,Edit,Grep) are enabled.\n - Sanitization: No data sanitization or filtering is described in the skill instructions.\n- [NO_CODE]: The skill consists solely of Markdown documentation and reference materials, with no executable scripts or code provided.
Audit Metadata