Store the SENTRY_AUTH_TOKEN exclusively as a secret within your CI/EAS build environment (avoid using any EXPO_PUBLIC_* variable). The Sentry plugin accesses it during build time, ensuring it does not reach the client. Refer to Expo’s environment variable and Sentry guides for more information.