sentry

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow (SKILL.md) and scripts/sentry_api.py explicitly call external Sentry API endpoints (e.g., /api/0/projects/{org}/{project}/issues/, /api/0/issues/{issue_id}/events/) to fetch live issue/event data, which is user-generated/untrusted content that the agent is instructed to read and summarize and that can materially influence subsequent decisions or actions.