opentelemetry-collector-contrib sentryexporter: Path traversal in Sentry exporter via attacker-controlled service.name reaches privileged Sentry API endpoints with operator bearer token in github.com/open-telemetry/opentelemetry-collector-contrib/exporter/sentryexporter
{
"url": "https://pkg.go.dev/vuln/GO-2026-5126",
"review_status": "UNREVIEWED"
}