diff --git a/.agents/skills/triage-issue/SKILL.md b/.agents/skills/triage-issue/SKILL.md index 1401e5210514..c997734d1c99 100644 --- a/.agents/skills/triage-issue/SKILL.md +++ b/.agents/skills/triage-issue/SKILL.md @@ -82,6 +82,12 @@ Cross-repo searches (only when clearly relevant): **Shell safety:** Strip shell metacharacters from issue-derived search terms before use in commands. +#### Changelog investigation (when a version is mentioned) + +If the issue states a version where the problem started (e.g. "works in 7.x, broken since 8.2.0"), **check `CHANGELOG.md`** for that version range. +Use the **Grep** tool (pattern `^## ` on `CHANGELOG.md`) to list version headings, then use the **Read** tool to read the relevant entries. Do NOT use Bash `grep`/`head` — the native Grep/Read tools are read-only and require no extra Bash permissions in CI. +Surface any relevant changelog delta in the triage report under **Root cause** or **Information gaps**. If nothing relevant is found, note that explicitly. + ### Step 4: Related Issues & PRs - Search for duplicate or related issues: `gh api search/issues -X GET -f "q=+repo:getsentry/sentry-javascript+type:issue"` and use the **Write** tool to save the command output to `search.json` in the workspace root diff --git a/.agents/skills/triage-issue/scripts/detect_prompt_injection.py b/.agents/skills/triage-issue/scripts/detect_prompt_injection.py index 475211c91c21..06eecdd61f31 100644 --- a/.agents/skills/triage-issue/scripts/detect_prompt_injection.py +++ b/.agents/skills/triage-issue/scripts/detect_prompt_injection.py @@ -121,7 +121,7 @@ def is_non_latin(c: str) -> bool: (r"\b(admin|developer|system)[\s_-]mode", 8, "Mode manipulation"), # Sensitive file paths (10 points) - legitimate issues rarely reference these - (r"(~/\.aws/|~/\.ssh/|/root/|/etc/passwd|/etc/shadow)", 10, "System credentials path"), + (r"(~/\.aws/|~/\.ssh/|(?