Skip to content

chore(deps): update getsentry/skills digest to 5a64b36#685

Open
renovate[bot] wants to merge 2 commits into
mainfrom
renovate/getsentry-skills-digest
Open

chore(deps): update getsentry/skills digest to 5a64b36#685
renovate[bot] wants to merge 2 commits into
mainfrom
renovate/getsentry-skills-digest

Conversation

@renovate

@renovate renovate Bot commented Jul 3, 2026

Copy link
Copy Markdown
Contributor

This PR contains the following updates:

Package Update Change
getsentry/skills digest c8137355a64b36

Configuration

📅 Schedule: (UTC)

  • Branch creation
    • Between 12:00 AM and 03:59 AM, only on Monday (* 0-3 * * 1)
  • Automerge
    • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.


  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate Bot added the dependencies label Jul 3, 2026
@toolhive-release-app

toolhive-release-app Bot commented Jul 3, 2026

Copy link
Copy Markdown
Contributor

🛡️ Skill Security Scan Results

✅ agents-md

  • Status: Passed
  • Findings: 2
  • Allowed (not blocking): 1
    • MANIFEST_MISSING_LICENSE (Allowed: getsentry/skills is licensed Apache-2.0 at the repository root; upstream does not embed an SPDX license identifier in per-skill SKILL.md frontmatter.)

✅ claude-settings-audit

  • Status: Passed
  • Findings: 5
  • Allowed (not blocking): 1
    • MANIFEST_MISSING_LICENSE (Allowed: getsentry/skills is licensed Apache-2.0 at the repository root; upstream does not embed an SPDX license identifier in per-skill SKILL.md frontmatter.)

✅ code-review

  • Status: Passed
  • Findings: 3
  • Allowed (not blocking): 1
    • MANIFEST_MISSING_LICENSE (Allowed: getsentry/skills is licensed Apache-2.0 at the repository root; upstream does not embed an SPDX license identifier in per-skill SKILL.md frontmatter.)

✅ code-simplifier

  • Status: Passed
  • Findings: 1
  • Allowed (not blocking): 1
    • MANIFEST_MISSING_LICENSE (Allowed: getsentry/skills is licensed Apache-2.0 at the repository root; upstream does not embed an SPDX license identifier in per-skill SKILL.md frontmatter.)

✅ commit

  • Status: Passed
  • Findings: 4
  • Allowed (not blocking): 1
    • MANIFEST_MISSING_LICENSE (Allowed: getsentry/skills is licensed Apache-2.0 at the repository root; upstream does not embed an SPDX license identifier in per-skill SKILL.md frontmatter.)

✅ create-branch

  • Status: Passed
  • Findings: 6
  • Allowed (not blocking): 1
    • MANIFEST_MISSING_LICENSE (Allowed: getsentry/skills is licensed Apache-2.0 at the repository root; upstream does not embed an SPDX license identifier in per-skill SKILL.md frontmatter.)

✅ django-access-review

  • Status: Passed
  • Findings: 3

✅ django-perf-review

  • Status: Passed
  • Findings: 0

❌ doc-coauthoring

  • Status: Failed
  • Findings: 5
  • Blocking: 1

Blocking issues:

  • [ATR_2026_00051] (HIGH) Pattern detected: For each (SKILL.md:260)

Allowlisted (not blocking):

  • MANIFEST_MISSING_LICENSE (Allowed: getsentry/skills is licensed Apache-2.0 at the repository root; upstream does not embed an SPDX license identifier in per-skill SKILL.md frontmatter.)

❌ find-bugs

  • Status: Failed
  • Findings: 5
  • Blocking: 1

Blocking issues:

  • [ATR_2026_00111] (CRITICAL) Pattern detected: $(gh repo view --json defaultBranchRef --jq '.defaultBranchRef.name') (SKILL.md:7)

Allowlisted (not blocking):

  • MANIFEST_MISSING_LICENSE (Allowed: getsentry/skills is licensed Apache-2.0 at the repository root; upstream does not embed an SPDX license identifier in per-skill SKILL.md frontmatter.)

✅ gh-review-requests

  • Status: Passed
  • Findings: 5
  • Allowed (not blocking): 1
    • MANIFEST_MISSING_LICENSE (Allowed: getsentry/skills is licensed Apache-2.0 at the repository root; upstream does not embed an SPDX license identifier in per-skill SKILL.md frontmatter.)

❌ gha-security-review

  • Status: Failed
  • Findings: 39
  • Blocking: 21

Blocking issues:

  • [ATR_2026_00066] (CRITICAL) Pattern detected: ${{ github.event.workflow_run.id }} (references/runner-infrastructure.md:155)
  • [ATR_2026_00040] (CRITICAL) Pattern detected: deploy (references/runner-infrastructure.md:156)
  • [ATR_2026_00066] (CRITICAL) Pattern detected: `bash (references/runner-infrastructure.md:169)
  • [ATR_2026_00063] (CRITICAL) Pattern detected: upload (references/runner-infrastructure.md:176)
  • [ATR_2026_00063] (CRITICAL) Pattern detected: upload (references/runner-infrastructure.md:177)
  • [ATR_2026_00066] (CRITICAL) Pattern detected: ${{ github.ref }}-${{ hashFiles('package-lock.json') }} (references/runner-infrastructure.md:222)
  • [ATR_2026_00040] (CRITICAL) Pattern detected: deploy (references/runner-infrastructure.md:238)
  • [ATR_2026_00040] (CRITICAL) Pattern detected: deploy (references/runner-infrastructure.md:239)
  • [ATR_2026_00040] (CRITICAL) Pattern detected: deploy (references/runner-infrastructure.md:246)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: pull_request_target + fork checkout | Critical | Fork code + secrets + persistenc (references/runner-infrastructure.md:256)
  • [ATR_2026_00040] (CRITICAL) Pattern detected: deploy (references/runner-infrastructure.md:258)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: push to protected branc (references/runner-infrastructure.md:259)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: uses:. If these actions are not pinned to immutable referenc (references/supply-chain.md:5)
  • [ATR_2026_00111] (CRITICAL) Pattern detected: | bash (references/supply-chain.md:59)
  • [ATR_2026_00040] (CRITICAL) Pattern detected: exec (references/supply-chain.md:61)
  • [ATR_2026_00111] (CRITICAL) Pattern detected: | bash (references/supply-chain.md:68)
  • [ATR_2026_00040] (CRITICAL) Pattern detected: shell (references/supply-chain.md:69)
  • [ATR_2026_00066] (CRITICAL) Pattern detected: `bash (references/supply-chain.md:78)
  • [ATR_2026_00012] (HIGH) Pattern detected: | Action that curl (references/supply-chain.md:147)
  • [ATR_2026_00111] (CRITICAL) Pattern detected: |bash (references/supply-chain.md:155)
  • [ATR_2026_00040] (CRITICAL) Pattern detected: EXEC (references/supply-chain.md:159)

✅ iterate-pr

  • Status: Passed
  • Findings: 7
  • Allowed (not blocking): 2
    • MANIFEST_MISSING_LICENSE (Allowed: getsentry/skills is licensed Apache-2.0 at the repository root; upstream does not embed an SPDX license identifier in per-skill SKILL.md frontmatter.)
    • RESOURCE_ABUSE_INFINITE_LOOP (Allowed: The scripts/monitor_pr_checks.py helper polls PR check status in a while True: loop with bounded retries and sleep — legitimate for waiting until CI reaches a terminal state. The script has a timeout and exit conditions.)

✅ pr-writer

  • Status: Passed
  • Findings: 2
  • Allowed (not blocking): 1
    • MANIFEST_MISSING_LICENSE (Allowed: getsentry/skills is licensed Apache-2.0 at the repository root; upstream does not embed an SPDX license identifier in per-skill SKILL.md frontmatter.)

✅ prompt-optimizer

  • Status: Passed
  • Findings: 4
  • Allowed (not blocking): 1
    • MANIFEST_MISSING_LICENSE (Allowed: getsentry/skills is licensed Apache-2.0 at the repository root; upstream does not embed an SPDX license identifier in per-skill SKILL.md frontmatter.)

✅ security-review

  • Status: Passed
  • Findings: 3

❌ skill-scanner

  • Status: Failed
  • Findings: 4
  • Blocking: 1

Blocking issues:

  • [ATR_2026_00276] (HIGH) Pattern detected: ​ (references/prompt-injection-patterns.md:72)

Allowlisted (not blocking):

  • YARA_prompt_injection_unicode_steganography (Allowed: The skill documents invisible Unicode steganography (\U000e0001 tag characters) as a prompt-injection vector. Describing the attack class is required for the skill to teach detection of it.)

❌ skill-writer

  • Status: Failed
  • Findings: 181
  • Blocking: 76

Blocking issues:

  • [ATR_2026_00010] (CRITICAL) Pattern detected: `referenc (references/reference-architecture.md:8)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: SPEC.md is the maintenanc (references/reference-architecture.md:9)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: SOURCES.md stores provenanc (references/reference-architecture.md:10)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: references/ | only some branches need it; keep runtime referenc (references/reference-architecture.md:27)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: SPEC.md | it explains maintenance, scope, or evidenc (references/reference-architecture.md:28)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: SOURCES.md | it is provenanc (references/reference-architecture.md:29)
  • [ATR_2026_00040] (CRITICAL) Pattern detected: exec (references/reference-architecture.md:36)
  • [ATR_2026_00012] (HIGH) Pattern detected: | look up exact facts | referenc (references/reference-architecture.md:37)
  • [ATR_2026_00012] (HIGH) Pattern detected: | diagnose a failure | troublesh (references/reference-architecture.md:38)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: `referenc (references/reference-architecture.md:59)
  • [ATR_2026_00001] (HIGH) Pattern detected: become a second (references/reference-architecture.md:72)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: <skill-root>/SKILL.md, <skill-root>/SPEC.md when required by change scope, and any bundled `referenc (references/registration-validation.md:8)
  • [ATR_2026_00066] (CRITICAL) Pattern detected: `bash (references/registration-validation.md:31)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: SPEC.md exists or was updated when the change creates a skill or materially changes intent, scope, evidence model, validation, or maintenanc (references/registration-validation.md:42)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: SKILL.md and `referenc (references/registration-validation.md:48)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: `referenc (references/registration-validation.md:51)
  • [ATR_2026_00066] (CRITICAL) Pattern detected: ${CLAUDE_SKILL_ROOT} (references/registration-validation.md:52)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: EVAL.md for skill-writer itself. Runtime skills should not route to their own eval files unless the user explicitly asks to run or maintain eval (references/skill-evals.md:5)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: EVAL.md | maintainer playbook for running the skill's eval (references/skill-evals.md:11)
  • [ATR_2026_00111] (CRITICAL) Pattern detected: evals/axis.config.json (references/skill-evals.md:12)
  • [ATR_2026_00111] (CRITICAL) Pattern detected: evals/scenarios/*.{json,ts} (references/skill-evals.md:13)
  • [ATR_2026_00111] (CRITICAL) Pattern detected: evals/fixtures/ (references/skill-evals.md:14)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: SKILL.md routing. Add SKILL.md routing only for skills whose purpose is running eval (references/skill-evals.md:16)
  • [ATR_2026_00012] (HIGH) Pattern detected: | skill eval (references/skill-evals.md:22)
  • [ATR_2026_00012] (HIGH) Pattern detected: | repeatable skill eval (references/skill-evals.md:23)
  • [ATR_2026_00040] (CRITICAL) Pattern detected: exec (references/skill-evals.md:24)
  • [ATR_2026_00012] (HIGH) Pattern detected: | out of scope for skill eval (references/skill-evals.md:28)
  • [ATR_2026_00040] (CRITICAL) Pattern detected: exec (references/skill-evals.md:30)
  • [ATR_2026_00111] (CRITICAL) Pattern detected: evals/fixtures/ (references/skill-evals.md:52)
  • [ATR_2026_00088] (HIGH) Pattern detected: output with normal (references/skill-evals.md:60)
  • [ATR_2026_00012] (HIGH) Pattern detected: | deterministic assertion | files exist, referenc (references/skill-evals.md:72)
  • [ATR_2026_00012] (HIGH) Pattern detected: | script check | JSON sh (references/skill-evals.md:73)
  • [ATR_2026_00012] (HIGH) Pattern detected: | LLM judge | conc (references/skill-evals.md:74)
  • [ATR_2026_00012] (HIGH) Pattern detected: | human review | taste, audienc (references/skill-evals.md:75)
  • [ATR_2026_00066] (CRITICAL) Pattern detected: `bash (references/skill-evals.md:83)
  • [ATR_2026_00012] (HIGH) Pattern detected: | runtime conc (references/skill-evals.md:111)
  • [ATR_2026_00012] (HIGH) Pattern detected: | important decisions have enough evidenc (references/skill-evals.md:112)
  • [ATR_2026_00040] (CRITICAL) Pattern detected: exec (references/skill-evals.md:125)
  • [ATR_2026_00040] (CRITICAL) Pattern detected: exec (references/source-adaptation.md:7)
  • [ATR_2026_00012] (HIGH) Pattern detected: | local target | what the generated skill sh (references/source-adaptation.md:16)
  • [ATR_2026_00012] (HIGH) Pattern detected: | local replacement | what sh (references/source-adaptation.md:18)
  • [ATR_2026_00012] (HIGH) Pattern detected: | provenanc (references/source-adaptation.md:20)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: SOURCES.md, SPEC.md, or a focused referenc (references/source-adaptation.md:39)
  • [ATR_2026_00040] (CRITICAL) Pattern detected: deploy (references/source-discovery.md:33)
  • [ATR_2026_00066] (CRITICAL) Pattern detected: `bash (references/source-discovery.md:40)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: SKILL.md. Summarize the behavior and keep provenance in SOURCES.md or an evidenc (references/source-discovery.md:49)
  • [ATR_2026_00040] (CRITICAL) Pattern detected: exec (references/spec-template.md:32)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: SPEC.md | maintenanc (references/spec-template.md:33)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: `referenc (references/spec-template.md:35)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: `references/evidenc (references/spec-template.md:36)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: `referenc (references/spec-template.md:88)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: `references/evidenc (references/spec-template.md:89)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: `references/evidenc (references/spec-template.md:108)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: SPEC.md conc (references/spec-template.md:113)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: `references/evidenc (references/spec-template.md:115)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: SKILL.md exceeds 500 lines and becomes a second enc (references/structure-troubleshooting.md:7)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: `referenc (references/structure-troubleshooting.md:9)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: SKILL.md, SPEC.md, SOURCES.md, `referenc (references/structure-troubleshooting.md:51)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: context: fork is used for conventions or reference material instead of a conc (references/structure-troubleshooting.md:97)
  • [ATR_2026_00040] (CRITICAL) Pattern detected: exec (references/structure-troubleshooting.md:99)
  • [ATR_2026_00040] (CRITICAL) Pattern detected: shell (references/structure-troubleshooting.md:103)
  • [ATR_2026_00040] (CRITICAL) Pattern detected: exec (references/synthesis-path.md:16)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: SPEC.md, SOURCES.md, and `references/evidenc (references/synthesis-path.md:39)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: references/source-adaptation.md when the primary input is an upstream prompt, workflow, rubric, benc (references/synthesis-path.md:45)
  • [ATR_2026_00012] (HIGH) Pattern detected: | negative behavior | false positives, reviewer conc (references/synthesis-path.md:76)
  • [ATR_2026_00012] (HIGH) Pattern detected: | version variance | platform or release differenc (references/synthesis-path.md:78)
  • [ATR_2026_00111] (CRITICAL) Pattern detected: | sh (references/synthesis-path.md:79)
  • [ATR_2026_00051] (HIGH) Pattern detected: For each (references/synthesis-path.md:90)
  • [ATR_2026_00040] (CRITICAL) Pattern detected: exec (references/workflow-parallel.md:8)
  • [ATR_2026_00040] (CRITICAL) Pattern detected: Exec (references/workflow-plan-validate-execute.md:1)
  • [ATR_2026_00040] (CRITICAL) Pattern detected: exec (references/workflow-plan-validate-execute.md:16)
  • [ATR_2026_00040] (CRITICAL) Pattern detected: Exec (references/workflow-plan-validate-execute.md:24)
  • [ATR_2026_00051] (HIGH) Pattern detected: for each (references/workflow-prompt-chaining.md:14)
  • [ATR_2026_00051] (HIGH) Pattern detected: for each (references/workflow-routing.md:16)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: `referenc (references/workflow-routing.md:23)
  • [ATR_2026_00010] (CRITICAL) Pattern detected: `referenc (references/workflow-routing.md:25)

Allowlisted (not blocking):

  • MANIFEST_MISSING_LICENSE (Allowed: getsentry/skills is licensed Apache-2.0 at the repository root; upstream does not embed an SPDX license identifier in per-skill SKILL.md frontmatter.)

Summary: Scanned 18 skill(s), found 100 blocking issue(s).

⚠️ Action Required: Review the blocking findings. Add a justified entry to the skill's security.allowed_issues[] in its spec.yaml if the finding is a false positive.

@renovate renovate Bot force-pushed the renovate/getsentry-skills-digest branch from a4964ed to 7a15c37 Compare July 3, 2026 10:17
…code-review,code-simplifier,commit,create-branch,django-access-review,django-perf-review,doc-coauthoring,find-bugs,gh-review-requests,gha-security-review,iterate-pr,pr-writer,prompt-optimizer,security-review,skill-scanner,skill-writer
@renovate

renovate Bot commented Jul 3, 2026

Copy link
Copy Markdown
Contributor Author

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants