Skip to content

Slack Integration

The BoostSecurity Slack integration provides the ability to send notifications of activity to a Slack channel.

Installation

  1. Go to the Integrations page.
  2. Click on the Slack tile.
  3. Within the integration drawer, click on the Install button.
  4. Once redirected to a Slack webpage, select the channel intended for sending notifications to.

Configuration

  1. Go to the Integrations page.
  2. Click on the Slack tile.
  3. Within the integration drawer, click the Configuration tab.

Elect a default channel

Select the default checkbox to indicate that the channel should be used to receive notifications when a policy is configured to send notifications to the default channel. To see an example of this, review the Application section of this page.

Remove a channel

Click on the trash icon and when the modal appears, click the Yes option. This severs the connection between the Slack channel and the Boost Slack application.

Send Slack Notifications

  1. Go to the Policy page.
  2. Edit an existing policy or begin creating a new policy that is to use the Slack integration.
  3. For either the default action or an action associated with a specific rule statement, select Send a notification.
  4. In the modal that appears, apply the following to the following fields:

a. Integration: Slack

b. Name: The name of the channel that is expected to receive notifications. Use default to send notifications to the channel that is designated as the default channel in the configuration settings of the Slack integration on the Integrations page.

c. Notify when:

  • Notify when it is a new violation being reported: Select this option to receive notifications on all net-new violations.

  • Notify when the violation is resolved: Select this option to receive notifications when a scan has found a violation to be resolved.

  • Notify when the violation is being suppressed: Select this option to receive notifications when a user has taken action within Boost against an item (e.g. has marked a violation as False Positive) or if a user has suppressed a violation with the #noboost keyword within source code.