Sentry User Auth Token
Service Name: Sentry
Service Description: Sentry is an application monitoring and error tracking software that helps developers identify and fix crashes in real time. It provides detailed error reports and helps teams prioritize fixes based on user impact.
Service Address: https://sentry.io/
Validation Type: API Auth
IP Allow list: Does not exist
Secret Access Scope: Grants access to Sentry user-level operations, allowing management of organizations the user belongs to.
Secret Revokement URL: https://sentry.io/settings/account/api/auth-tokens/
Secret Example: sntryu_a1b2c3d4e5f6g7h8i9j0k1l2m3n4o5p6q7r8s9t0u1v2w3x4y5z6a7b8c9d0e1f2g3h4i5j6k7l8m9n0o1p2
Suspicious Activity Investigation Instructions:
- Check Sentry audit logs for unusual organization access or changes
- Review API usage patterns for abnormal request volumes or access patterns
- Verify if unauthorized projects have been created or modified
- Check for unauthorized team member additions
- Monitor for unusual data access patterns or exports
Mitigation Instructions:
- Immediately revoke the compromised token by navigating to Sentry account settings
- Go to https://sentry.io/settings/account/api/auth-tokens/
- Find the compromised token and click "Revoke"
- Create a new token with appropriate scopes if needed
- Review organization audit logs for any suspicious activity
- Update any applications or services using the revoked token