sentry-analysis
Pass
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it ingests untrusted data in the form of Sentry logs and breadcrumbs.
- Ingestion points: Sentry error logs, stack traces, tags, and breadcrumbs provided in the chat (SKILL.md).
- Boundary markers: The instructions lack delimiters or explicit warnings to ignore instructions embedded within the logs.
- Capability inventory: The skill instructions include using file reading and search tools to investigate the codebase (SKILL.md).
- Sanitization: No sanitization or validation of the external log data is specified.
Audit Metadata