sentry-analyzer
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [PROMPT_INJECTION]: The skill retrieves and processes error logs, stacktraces, and breadcrumbs from an external Sentry instance, which constitutes an indirect prompt injection surface. If a Sentry issue contains malicious instructions, the agent could potentially be influenced to perform unintended actions during analysis.\n
- Ingestion points: Data is retrieved from the Sentry API v0 at sentry.miko.ru:8443.\n
- Boundary markers: No specific delimiters or instructions are used to separate external error content from the agent's core instructions.\n
- Capability inventory: The skill allows the use of Bash, Read, and Grep tools, providing a surface for command and file system interaction.\n
- Sanitization: No sanitization is performed on error message strings or breadcrumb data before being returned to the agent.\n- [COMMAND_EXECUTION]: The script
scripts/sentry-api.shexecutes shell commands includingcurl,jq, andpython3. Thecurlcommand is configured with the-kflag to bypass SSL certificate verification, which is a security best practice violation that exposes the API token and error data to man-in-the-middle attacks.\n- [EXTERNAL_DOWNLOADS]: The skill performs network requests to sentry.miko.ru:8443. This domain is verified as a vendor resource for the skill author and is necessary for the skill's primary function of error monitoring.
Audit Metadata