From 71b440d7a939e203eb15c7f2afc0dae89795a0b0 Mon Sep 17 00:00:00 2001 From: Juan Antonio Osorio Date: Thu, 5 Feb 2026 13:13:39 +0200 Subject: [PATCH] feat(sentry-mcp-server): enable security scanning with mock_env Replace insecure_ignore with mock_env configuration for the SENTRY_ACCESS_TOKEN environment variable. This allows the security scanner to start the server and analyze its debugging tools. Co-Authored-By: Claude Opus 4.5 --- npx/sentry-mcp-server/spec.yaml | 7 +++++-- 1 file changed, 5 insertions(+), 2 deletions(-) diff --git a/npx/sentry-mcp-server/spec.yaml b/npx/sentry-mcp-server/spec.yaml index 0fa7e09..640c1cd 100644 --- a/npx/sentry-mcp-server/spec.yaml +++ b/npx/sentry-mcp-server/spec.yaml @@ -19,8 +19,11 @@ provenance: # Security allowlist for known false positives security: - # Server requires SENTRY_ACCESS_TOKEN to start - cannot be scanned in CI - insecure_ignore: true + # Mock env vars allow security scanning without real credentials + mock_env: + - name: SENTRY_ACCESS_TOKEN + value: "sntrys_mock_token_for_security_scanning_00000" + description: "Sentry access token - mock value for security scanning" allowed_issues: - code: "AITech-9.1" reason: |