chore(deps): update getsentry/skills digest to c813735

[renovate]

This PR contains the following updates:

Package	Update	Change
getsentry/skills	digest	89aaec0 → c813735

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • Between 12:00 AM and 03:59 AM, only on Monday (* 0-3 * * 1)
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[github-actions]

🛡️ Skill Security Scan Results

✅ agents-md

• Status: Passed
• Findings: 2
• Allowed (not blocking): 1
  • MANIFEST_MISSING_LICENSE (Allowed: getsentry/skills is licensed Apache-2.0 at the repository root; upstream does not embed an SPDX license identifier in per-skill SKILL.md frontmatter.)

✅ claude-settings-audit

• Status: Passed
• Findings: 2
• Allowed (not blocking): 1
  • MANIFEST_MISSING_LICENSE (Allowed: getsentry/skills is licensed Apache-2.0 at the repository root; upstream does not embed an SPDX license identifier in per-skill SKILL.md frontmatter.)

✅ code-review

• Status: Passed
• Findings: 3
• Allowed (not blocking): 1
  • MANIFEST_MISSING_LICENSE (Allowed: getsentry/skills is licensed Apache-2.0 at the repository root; upstream does not embed an SPDX license identifier in per-skill SKILL.md frontmatter.)

✅ code-simplifier

• Status: Passed
• Findings: 1
• Allowed (not blocking): 1
  • MANIFEST_MISSING_LICENSE (Allowed: getsentry/skills is licensed Apache-2.0 at the repository root; upstream does not embed an SPDX license identifier in per-skill SKILL.md frontmatter.)

✅ commit

• Status: Passed
• Findings: 4
• Allowed (not blocking): 1
  • MANIFEST_MISSING_LICENSE (Allowed: getsentry/skills is licensed Apache-2.0 at the repository root; upstream does not embed an SPDX license identifier in per-skill SKILL.md frontmatter.)

✅ create-branch

• Status: Passed
• Findings: 5
• Allowed (not blocking): 1
  • MANIFEST_MISSING_LICENSE (Allowed: getsentry/skills is licensed Apache-2.0 at the repository root; upstream does not embed an SPDX license identifier in per-skill SKILL.md frontmatter.)

✅ django-access-review

• Status: Passed
• Findings: 3

✅ django-perf-review

• Status: Passed
• Findings: 0

✅ doc-coauthoring

• Status: Passed
• Findings: 4

✅ find-bugs

• Status: Passed
• Findings: 4
• Allowed (not blocking): 1
  • MANIFEST_MISSING_LICENSE (Allowed: getsentry/skills is licensed Apache-2.0 at the repository root; upstream does not embed an SPDX license identifier in per-skill SKILL.md frontmatter.)

✅ gh-review-requests

• Status: Passed
• Findings: 5
• Allowed (not blocking): 1
  • MANIFEST_MISSING_LICENSE (Allowed: getsentry/skills is licensed Apache-2.0 at the repository root; upstream does not embed an SPDX license identifier in per-skill SKILL.md frontmatter.)

❌ gha-security-review

• Status: Failed
• Findings: 45
• Blocking: 25

Blocking issues:

• [ATR_2026_00010] (CRITICAL) Pattern detected: main and write to their own branc (references/runner-infrastructure.md:125)
• [ATR_2026_00063] (CRITICAL) Pattern detected: upload (references/runner-infrastructure.md:133)
• [ATR_2026_00063] (CRITICAL) Pattern detected: upload (references/runner-infrastructure.md:141)
• [ATR_2026_00040] (CRITICAL) Pattern detected: Deploy (references/runner-infrastructure.md:146)
• [ATR_2026_00066] (CRITICAL) Pattern detected: ${{ github.event.workflow_run.id }} (references/runner-infrastructure.md:155)
• [ATR_2026_00040] (CRITICAL) Pattern detected: deploy (references/runner-infrastructure.md:156)
• [ATR_2026_00066] (CRITICAL) Pattern detected: `bash (references/runner-infrastructure.md:169)
• [ATR_2026_00063] (CRITICAL) Pattern detected: upload (references/runner-infrastructure.md:176)
• [ATR_2026_00063] (CRITICAL) Pattern detected: upload (references/runner-infrastructure.md:177)
• [ATR_2026_00066] (CRITICAL) Pattern detected: ${{ github.ref }}-${{ hashFiles('package-lock.json') }} (references/runner-infrastructure.md:222)
• [ATR_2026_00040] (CRITICAL) Pattern detected: deploy (references/runner-infrastructure.md:238)
• [ATR_2026_00040] (CRITICAL) Pattern detected: deploy (references/runner-infrastructure.md:239)
• [ATR_2026_00040] (CRITICAL) Pattern detected: deploy (references/runner-infrastructure.md:246)
• [ATR_2026_00010] (CRITICAL) Pattern detected: pull_request_target + fork checkout | Critical | Fork code + secrets + persistenc (references/runner-infrastructure.md:256)
• [ATR_2026_00040] (CRITICAL) Pattern detected: deploy (references/runner-infrastructure.md:258)
• [ATR_2026_00010] (CRITICAL) Pattern detected: push to protected branc (references/runner-infrastructure.md:259)
• [ATR_2026_00010] (CRITICAL) Pattern detected: uses:. If these actions are not pinned to immutable referenc (references/supply-chain.md:5)
• [ATR_2026_00111] (CRITICAL) Pattern detected: | bash (references/supply-chain.md:59)
• [ATR_2026_00040] (CRITICAL) Pattern detected: exec (references/supply-chain.md:61)
• [ATR_2026_00111] (CRITICAL) Pattern detected: | bash (references/supply-chain.md:68)
• [ATR_2026_00040] (CRITICAL) Pattern detected: shell (references/supply-chain.md:69)
• [ATR_2026_00066] (CRITICAL) Pattern detected: `bash (references/supply-chain.md:78)
• [ATR_2026_00012] (HIGH) Pattern detected: | Action that curl (references/supply-chain.md:147)
• [ATR_2026_00111] (CRITICAL) Pattern detected: |bash (references/supply-chain.md:155)
• [ATR_2026_00040] (CRITICAL) Pattern detected: EXEC (references/supply-chain.md:159)

✅ iterate-pr

• Status: Passed
• Findings: 7
• Allowed (not blocking): 2
  • MANIFEST_MISSING_LICENSE (Allowed: getsentry/skills is licensed Apache-2.0 at the repository root; upstream does not embed an SPDX license identifier in per-skill SKILL.md frontmatter.)
  • RESOURCE_ABUSE_INFINITE_LOOP (Allowed: The scripts/monitor_pr_checks.py helper polls PR check status in a while True: loop with bounded retries and sleep — legitimate for waiting until CI reaches a terminal state. The script has a timeout and exit conditions.)

✅ pr-writer

• Status: Passed
• Findings: 3
• Allowed (not blocking): 1
  • MANIFEST_MISSING_LICENSE (Allowed: getsentry/skills is licensed Apache-2.0 at the repository root; upstream does not embed an SPDX license identifier in per-skill SKILL.md frontmatter.)

✅ prompt-optimizer

• Status: Passed
• Findings: 4
• Allowed (not blocking): 1
  • MANIFEST_MISSING_LICENSE (Allowed: getsentry/skills is licensed Apache-2.0 at the repository root; upstream does not embed an SPDX license identifier in per-skill SKILL.md frontmatter.)

✅ security-review

• Status: Passed
• Findings: 3

❌ skill-scanner

• Status: Failed
• Findings: 7
• Blocking: 2

Blocking issues:

• [ATR_2026_00080] (HIGH) Pattern detected: decode("aW1wb3J0IG9zOyBvcy5zeXN0ZW0oJ2N1cmwgZXZpbC5jb20nKQ== (references/dangerous-code-patterns.md:144)
• [ATR_2026_00276] (HIGH) Pattern detected: ​ (references/prompt-injection-patterns.md:72)

Allowlisted (not blocking):

• YARA_prompt_injection_unicode_steganography (Allowed: The skill documents invisible Unicode steganography (\U000e0001 tag characters) as a prompt-injection vector. Describing the attack class is required for the skill to teach detection of it.)

❌ skill-writer

• Status: Failed
• Findings: 65
• Blocking: 22

Blocking issues:

• [ATR_2026_00010] (CRITICAL) Pattern detected: `references/evidenc (references/spec-template.md:115)
• [ATR_2026_00010] (CRITICAL) Pattern detected: SKILL.md exceeds 500 lines and becomes a second enc (references/structure-troubleshooting.md:7)
• [ATR_2026_00010] (CRITICAL) Pattern detected: `referenc (references/structure-troubleshooting.md:9)
• [ATR_2026_00010] (CRITICAL) Pattern detected: SKILL.md, SPEC.md, SOURCES.md, `referenc (references/structure-troubleshooting.md:51)
• [ATR_2026_00010] (CRITICAL) Pattern detected: context: fork is used for conventions or reference material instead of a conc (references/structure-troubleshooting.md:97)
• [ATR_2026_00040] (CRITICAL) Pattern detected: exec (references/structure-troubleshooting.md:99)
• [ATR_2026_00040] (CRITICAL) Pattern detected: shell (references/structure-troubleshooting.md:103)
• [ATR_2026_00040] (CRITICAL) Pattern detected: exec (references/synthesis-path.md:16)
• [ATR_2026_00010] (CRITICAL) Pattern detected: SPEC.md, SOURCES.md, and `references/evidenc (references/synthesis-path.md:39)
• [ATR_2026_00010] (CRITICAL) Pattern detected: references/source-adaptation.md when the primary input is an upstream prompt, workflow, rubric, benc (references/synthesis-path.md:45)
• [ATR_2026_00012] (HIGH) Pattern detected: | negative behavior | false positives, reviewer conc (references/synthesis-path.md:76)
• [ATR_2026_00012] (HIGH) Pattern detected: | version variance | platform or release differenc (references/synthesis-path.md:78)
• [ATR_2026_00111] (CRITICAL) Pattern detected: | sh (references/synthesis-path.md:79)
• [ATR_2026_00051] (HIGH) Pattern detected: For each (references/synthesis-path.md:90)
• [ATR_2026_00040] (CRITICAL) Pattern detected: exec (references/workflow-parallel.md:8)
• [ATR_2026_00040] (CRITICAL) Pattern detected: Exec (references/workflow-plan-validate-execute.md:1)
• [ATR_2026_00040] (CRITICAL) Pattern detected: exec (references/workflow-plan-validate-execute.md:16)
• [ATR_2026_00040] (CRITICAL) Pattern detected: Exec (references/workflow-plan-validate-execute.md:24)
• [ATR_2026_00051] (HIGH) Pattern detected: for each (references/workflow-prompt-chaining.md:14)
• [ATR_2026_00051] (HIGH) Pattern detected: for each (references/workflow-routing.md:16)
• [ATR_2026_00010] (CRITICAL) Pattern detected: `referenc (references/workflow-routing.md:23)
• [ATR_2026_00010] (CRITICAL) Pattern detected: `referenc (references/workflow-routing.md:25)

Allowlisted (not blocking):

• MANIFEST_MISSING_LICENSE (Allowed: getsentry/skills is licensed Apache-2.0 at the repository root; upstream does not embed an SPDX license identifier in per-skill SKILL.md frontmatter.)

---

Summary: Scanned 18 skill(s), found 49 blocking issue(s).

⚠️ Action Required: Review the blocking findings. Add a justified entry to the skill's security.allowed_issues[] in its spec.yaml if the finding is a false positive.

[renovate]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.