Skills
skills/onekeyhq/app-monorepo/1k-sentry-analysis/Gen Agent Trust Hub

1k-sentry-analysis

Pass

Audited by Gen Agent Trust Hub on Feb 18, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [Indirect Prompt Injection] (LOW): The skill processes untrusted external data in the form of Sentry JSON logs, which can contain attacker-controlled content in fields like error messages or breadcrumbs. This content could attempt to influence the agent's behavior (e.g., instructing the agent to execute malicious commands or exfiltrate data via Bash).
  • Ingestion points: Sentry JSON logs loaded for analysis.
  • Boundary markers: No explicit markers or 'ignore' instructions for log content are defined in the skill file.
  • Capability inventory: Allowed tools include Bash, Edit, and Write, allowing for arbitrary code modification and system command execution.
  • Sanitization: No sanitization or validation of log content is specified before the agent processes the data.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 18, 2026, 12:24 AM