β Scenario library
The Bug Report That Ran Code
A fake Sentry error report hijacks a developer's coding agent into running a shell command
Technique first revealed 12 Jun 2026
Tool-Using Agent
InstructionsDataActionsControl / decisionFeedback / logs
π Click a component to inspectSetupStep 1 / 7
A trusted integration
A developer connects their AI coding assistant to Sentry so it can read the app's error reports and help fix bugs. The assistant now has a button it can press to fetch those reports whenever it needs them.
βοΈMCP client config (agent β Sentry)config
{
"mcpServers": {
"sentry": {
"command": "npx",
"args": ["-y", "@sentry/mcp-server"],
"env": { "SENTRY_AUTH_TOKEN": "<DEV_READ_TOKEN>" }
}
}
}
// Tools exposed: list_issues, get_issue, get_event
// NOTE: read token authenticates the SERVER, not each event it returns.β / β keys