← 返回 Skills 市场
codeninja23

Native Sentry

作者 codeninja23 · GitHub ↗ · v1.0.1
cross-platform ⚠ suspicious
594
总下载
2
收藏
1
当前安装
2
版本数
在 OpenClaw 中安装
/install native-sentry
功能描述
Read Sentry issues, events, and production errors via the Sentry REST API. Use when the user wants to inspect errors, list recent issues, get stack traces, o...
安全使用建议
This skill appears to do exactly what it says: read-only access to Sentry via the REST API. Before installing, confirm you provide a Sentry token with only read scopes (project:read, event:read, org:read). Be cautious if you override the base URL (SENTRY_BASE_URL or --base-url) because the token will be sent to that host — only point it at trusted Sentry instances. Avoid using --no-redact in shared or logged environments because it can expose PII and stack traces. If you need a higher assurance, review the included scripts/sentry_api.py yourself (it is small and uses only stdlib networking).
功能分析
Type: OpenClaw Skill Name: native-sentry Version: 1.0.1 The skill bundle is classified as suspicious due to a potential shell injection vulnerability. While the `sentry_api.py` script itself employs good security practices like PII redaction, `argparse`, and `urlencode` to prevent injection within its own logic, the `SKILL.md` defines commands that take arguments (e.g., `ISSUE_ID`, `EVENT_ID`, `--query`) which, if directly interpolated from unsanitized user input by the OpenClaw agent into the bash command string, could lead to arbitrary shell command execution. This represents a significant vulnerability in the agent's interaction model with the skill, rather than intentional malice within the skill's code itself.
能力评估
Purpose & Capability
Name/description, required binaries, declared primary env (SENTRY_AUTH_TOKEN) and included Python script all align with a read-only Sentry API helper. The script only implements listing issues, fetching events, and event/issue details — exactly what the description promises.
Instruction Scope
SKILL.md instructions restrict operations to HTTP reads against the configured Sentry base URL and only reference SENTRY_AUTH_TOKEN, SENTRY_ORG, SENTRY_PROJECT and optional SENTRY_BASE_URL. The instructions and script redaction behavior are explicit. Note: the skill allows disabling redaction (--no-redact) and supports overriding the base URL, which could result in tokens/data being sent to a non-Sentry host if misconfigured; the README and SKILL.md warn about PII exposure.
Install Mechanism
This is an instruction-only skill with a bundled pure-stdlib Python script; there is no install step that downloads external code or runs package managers. No risky install URLs or extract operations are present.
Credentials
Only SENTRY_AUTH_TOKEN is required (primary credential) and is appropriate for the stated read-only purpose. Optional environment variables (SENTRY_ORG, SENTRY_PROJECT, SENTRY_BASE_URL) are used for convenience; they are not required. The requested env access is proportional to the functionality.
Persistence & Privilege
The skill does not request always:true, has no install that persists to system locations beyond its own script, and does not modify other skills or system configs. Autonomous invocation is allowed by default (platform behavior) but is not combined with other privileged requests.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install native-sentry
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /native-sentry 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.1
Hide SENTRY_AUTH_TOKEN and clarify PII warnings
v0.1.0
Initial release of native-sentry – read Sentry errors and issues via the REST API. - Provides commands to list issues, get issue/event details, and summarize production health. - Requires SENTRY_AUTH_TOKEN with read-only scopes (project:read, event:read, org:read). - Supports filtering by project, org, environment, time range, and custom queries. - Default PII redaction; stack traces optional. - Self-hosted Sentry supported via `--base-url` or `SENTRY_BASE_URL`.
元数据
Slug native-sentry
版本 1.0.1
许可证
累计安装 1
当前安装数 1
历史版本数 2
常见问题

Native Sentry 是什么?

Read Sentry issues, events, and production errors via the Sentry REST API. Use when the user wants to inspect errors, list recent issues, get stack traces, o... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 594 次。

如何安装 Native Sentry?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install native-sentry」即可一键安装,无需额外配置。

Native Sentry 是免费的吗?

是的,Native Sentry 完全免费(开源免费),可自由下载、安装和使用。

Native Sentry 支持哪些平台?

Native Sentry 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Native Sentry?

由 codeninja23(@codeninja23)开发并维护,当前版本 v1.0.1。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191113 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论