Sentry 告警创建指南：使用 API 自动化设置监控通知（Slack/邮件/PagerDuty）

sentry-create-alert by getsentry/sentry-agent-skills

185 周安装量

19 GitHub Stars

GitHub

安装命令

npx skills add https://github.com/getsentry/sentry-agent-skills --skill sentry-create-alert

自动化开发运维监控

🇨🇳中文介绍

创建 Sentry 告警

通过 Sentry 的工作流引擎 API 创建告警。

注意： 此 API 目前处于 测试版，可能会发生变化。它是新监控和告警功能的一部分，可能在旧版告警 UI 中不可见。

何时调用此技能

用户要求“创建 Sentry 告警”或“设置通知”
用户希望在问题符合某些条件时收到电子邮件或通知
用户提及优先级告警、降级告警或工作流自动化
用户希望为 Sentry 问题配置 Slack、PagerDuty 或电子邮件通知

先决条件

在 shell 中可用 curl
具有 alerts:write 作用域的 Sentry 组织认证令牌（也接受 org:admin 或 org:write）

阶段 1：收集配置

向用户询问任何缺失的详细信息：

详情	必需	示例
组织标识符

广告位招租

在这里展示您的产品或服务

触达数万 AI 开发者，精准高效

联系我们

相关 Skills

FlyClaw：零登录航班聚合查询工具，Python实现多源航班信息与价格搜索

4,000,000 周安装

Vercel React 最佳实践指南 | 58条Next.js性能优化规则与代码重构

273,700 周安装

agent-browser 浏览器自动化工具 - Vercel Labs 命令行网页操作与测试

150,000 周安装

Azure RBAC 权限管理工具：查找最小角色、创建自定义角色与自动化分配

123,100 周安装

API="https://{region}.sentry.io/api/0/organizations/{org}"
AUTH="Authorization: Bearer {token}"

# 通过邮箱查找用户 ID
curl -s "$API/members/" -H "$AUTH" | python3 -c "
import json,sys
for m in json.load(sys.stdin):
  if m.get('email')=='USER_EMAIL' or m.get('user',{}).get('email')=='USER_EMAIL':
    print(m['user']['id']); break"

# 列出团队
curl -s "$API/teams/" -H "$AUTH" | python3 -c "
import json,sys
for t in json.load(sys.stdin):
  print(t['id'], t['slug'])"

# 列出集成（用于 Slack/PagerDuty）
curl -s "$API/integrations/" -H "$AUTH" | python3 -c "
import json,sys
for i in json.load(sys.stdin):
  print(i['id'], i['provider']['key'], i['name'])"

类型	触发时机
`first_seen_event`	创建新问题时
`regression_event`	已解决的问题再次出现时
`reappeared_event`	已归档的问题重新出现时
`issue_resolved_trigger`	问题被解决时

类型	`comparison` 格式	描述
`issue_priority_greater_or_equal`	`75`（纯整数）	优先级 >= 低(25)/中(50)/高(75)
`issue_priority_deescalating`	`true`（纯布尔值）	优先级降至峰值以下
`event_frequency_count`	`{"value": 100, "interval": "1hr"}`	时间窗口内的事件计数
`event_unique_user_frequency_count`	`{"value": 50, "interval": "1hr"}`	时间窗口内受影响的用户数
`tagged_event`	`{"key": "level", "match": "eq", "value": "error"}`	事件标签匹配
`assigned_to`	`{"targetType": "Member", "targetIdentifier": 123}`	问题分配给目标
`level`	`{"level": 40, "match": "gte"}`	事件级别（致命=50，错误=40，警告=30）
`age_comparison`	`{"time": "hour", "value": 24, "comparisonType": "older"}`	问题存在时长
`issue_category`	`{"value": 1}`	类别（1=错误，6=反馈）
`issue_occurrences`	`{"value": 100}`	总发生次数

间隔选项： "1min", "5min", "15min", "1hr", "1d", "1w", "30d"

标签匹配类型： "co"（包含）, "nc"（不包含）, "eq", "ne", "sw"（以...开头）, "ew"（以...结尾）, "is"（已设置）, "ns"（未设置）

类型	关键配置
`email`	`config.targetType`: `"user"` / `"team"` / `"issue_owners"`, `config.targetIdentifier`: `<id>`
`slack`	`integrationId`: `<id>`, `config.targetDisplay`: `"#频道名称"`
`pagerduty`	`integrationId`: `<id>`, `config.targetDisplay`: `<服务名称>`, `data.priority`: `"critical"`
`discord`	`integrationId`: `<id>`, `data.tags`: 标签列表
`msteams`	`integrationId`: `<id>`, `config.targetDisplay`: `<频道>`
`opsgenie`	`integrationId`: `<id>`, `data.priority`: `"P1"`-`"P5"`
`jira`	`integrationId`: `<id>`, `data`: 项目/问题配置
`github`	`integrationId`: `<id>`, `data`: 仓库/问题配置

{
  "name": "<告警名称>",
  "enabled": true,
  "environment": null,
  "config": { "frequency": 30 },
  "triggers": {
    "logicType": "any-short",
    "conditions": [
      { "type": "first_seen_event", "comparison": true, "conditionResult": true }
    ],
    "actions": []
  },
  "actionFilters": [{
    "logicType": "all",
    "conditions": [
      { "type": "issue_priority_greater_or_equal", "comparison": 75, "conditionResult": true },
      { "type": "event_frequency_count", "comparison": {"value": 50, "interval": "1hr"}, "conditionResult": true }
    ],
    "actions": [{
      "type": "email",
      "integrationId": null,
      "data": {},
      "config": {
        "targetType": "user",
        "targetIdentifier": "<用户_id>",
        "targetDisplay": null
      },
      "status": "active"
    }]
  }]
}

frequency：重复通知之间的分钟数。允许的值：0, 5, 10, 30, 60, 180, 720, 1440。

问题	解决方案
401 未授权	令牌需要 `alerts:write` 作用域
403 禁止访问	令牌必须属于目标组织
404 未找到	检查组织标识符和区域（`us` 与 `de`）
400 错误请求	验证负载 JSON 结构，检查必填字段
用户 ID 未找到	验证邮箱是否匹配组织的成员

🇺🇸English

Create Sentry Alert

Create alerts via Sentry's workflow engine API.

Note: This API is currently in beta and may be subject to change. It is part of New Monitors and Alerts and may not be viewable in the legacy Alerts UI.

Invoke This Skill When

User asks to "create a Sentry alert" or "set up notifications"
User wants to be emailed or notified when issues match certain conditions
User mentions priority alerts, de-escalation alerts, or workflow automations
User wants to configure Slack, PagerDuty, or email notifications for Sentry issues

Prerequisites

curl available in shell
Sentry org auth token with alerts:write scope (also accepts org:admin or org:write)

Phase 1: Gather Configuration

Ask the user for any missing details:

Detail	Required	Example
Org slug	Yes	`sentry`, `my-org`
Auth token	Yes	`sntryu_...` (needs `alerts:write` scope)
Region	Yes (default: `us`)	`us` → `us.sentry.io`, `de` → `de.sentry.io`

Phase 2: Look Up IDs

Use these API calls to resolve names to IDs as needed.

API="https://{region}.sentry.io/api/0/organizations/{org}"
AUTH="Authorization: Bearer {token}"

# Find user ID by email
curl -s "$API/members/" -H "$AUTH" | python3 -c "
import json,sys
for m in json.load(sys.stdin):
  if m.get('email')=='USER_EMAIL' or m.get('user',{}).get('email')=='USER_EMAIL':
    print(m['user']['id']); break"

# List teams
curl -s "$API/teams/" -H "$AUTH" | python3 -c "
import json,sys
for t in json.load(sys.stdin):
  print(t['id'], t['slug'])"

# List integrations (for Slack/PagerDuty)
curl -s "$API/integrations/" -H "$AUTH" | python3 -c "
import json,sys
for i in json.load(sys.stdin):
  print(i['id'], i['provider']['key'], i['name'])"

Phase 3: Build Payload

Trigger Events

Pick which issue events fire the workflow. Use logicType: "any-short" (triggers must always use this).

Type	Fires when
`first_seen_event`	New issue created
`regression_event`	Resolved issue recurs
`reappeared_event`	Archived issue reappears
`issue_resolved_trigger`	Issue is resolved

Filter Conditions

Conditions that must pass before actions execute. Use logicType: "all", "any-short", or "none".

Thecomparison field is polymorphic — its shape depends on the condition type:

Type	`comparison` format	Description
`issue_priority_greater_or_equal`	`75` (bare integer)	Priority >= Low(25)/Medium(50)/High(75)
`issue_priority_deescalating`	`true` (bare boolean)	Priority dropped below peak
`event_frequency_count`	`{"value": 100, "interval": "1hr"}`

Interval options: "1min", "5min", "15min", "1hr", "1d", "1w", "30d"

Tag match types: "co" (contains), "nc" (not contains), "eq", "ne", "sw" (starts with), "ew" (ends with), "is" (set), "ns" (not set)

Set conditionResult to false to invert (fire when condition is NOT met).

Actions

Type	Key Config
`email`	`config.targetType`: `"user"` / `"team"` / `"issue_owners"`, `config.targetIdentifier`: `<id>`
`slack`	`integrationId`: , :

Full Payload Structure

{
  "name": "<Alert Name>",
  "enabled": true,
  "environment": null,
  "config": { "frequency": 30 },
  "triggers": {
    "logicType": "any-short",
    "conditions": [
      { "type": "first_seen_event", "comparison": true, "conditionResult": true }
    ],
    "actions": []
  },
  "actionFilters": [{
    "logicType": "all",
    "conditions": [
      { "type": "issue_priority_greater_or_equal", "comparison": 75, "conditionResult": true },
      { "type": "event_frequency_count", "comparison": {"value": 50, "interval": "1hr"}, "conditionResult": true }
    ],
    "actions": [{
      "type": "email",
      "integrationId": null,
      "data": {},
      "config": {
        "targetType": "user",
        "targetIdentifier": "<user_id>",
        "targetDisplay": null
      },
      "status": "active"
    }]
  }]
}

frequency: minutes between repeated notifications. Allowed values: 0, 5, 10, 30, 60, 180, 720, 1440.

Structure note: triggers.actions is always [] — actions live inside actionFilters[].actions.

Phase 4: Create the Alert

curl -s -w "\n%{http_code}" -X POST \
  "https://{region}.sentry.io/api/0/organizations/{org}/workflows/" \
  -H "Authorization: Bearer {token}" \
  -H "Content-Type: application/json" \
  -d '{payload}'

Expect HTTP 201. The response contains the workflow id.

Phase 5: Verify

Confirm the alert was created and provide the UI link:

https://{org_slug}.sentry.io/monitors/alerts/{workflow_id}/

If the org lacks the workflow-engine-ui feature flag, the alert appears at:

https://{org_slug}.sentry.io/alerts/rules/

Managing Alerts

# List all workflows
curl -s "$API/workflows/" -H "$AUTH"

# Get one workflow
curl -s "$API/workflows/{id}/" -H "$AUTH"

# Update a workflow
curl -s -X PUT "$API/workflows/{id}/" -H "$AUTH" -H "Content-Type: application/json" -d '{payload}'

# Delete a workflow
curl -s -X DELETE "$API/workflows/{id}/" -H "$AUTH"
# Expect 204

Troubleshooting

Issue	Solution
401 Unauthorized	Token needs `alerts:write` scope
403 Forbidden	Token must belong to the target org
404 Not Found	Check org slug and region (`us` vs `de`)
400 Bad Request	Validate payload JSON structure, check required fields
User ID not found	Verify email matches a member of the org

Weekly Installs

185

Repository

getsentry/sentr…t-skills

GitHub Stars

First Seen

Feb 18, 2026

Security Audits

Gen Agent Trust HubWarn SocketPass SnykFail

Installed on

codex183

gemini-cli182

opencode182

github-copilot180

amp179

kimi-cli179

Sentry 告警创建指南：使用 API 自动化设置监控通知（Slack/邮件/PagerDuty）

🇨🇳中文介绍

创建 Sentry 告警

何时调用此技能

先决条件

阶段 1：收集配置

相关 Skills

阶段 2：查找 ID

阶段 3：构建负载

触发事件

过滤条件

操作

完整负载结构

阶段 4：创建告警

阶段 5：验证

管理告警

故障排除