Slack
Reporter that pushes findings to your Slack. Read more about Slack here.
How to use
Open-Source
- Add the component to the workflow:
# file ./my-workflow/workflow.yml
description: Workflow reporting to slack
name: slack
components:
- component: ghcr.io/smithy-security/smithy/manifests/components/targets/git-clone:v1.3.2
- component: ghcr.io/smithy-security/smithy/manifests/components/scanners/gosec:v1.2.2
- component: ghcr.io/smithy-security/smithy/manifests/components/scanners/nancy:v1.2.1
- component: ghcr.io/smithy-security/smithy/manifests/components/enrichers/custom-annotation:v0.1.1
- component: ghcr.io/smithy-security/smithy/manifests/components/reporters/slack:v0.4.1
- Configure the parameter overrides of the components in the workflow overrides file.
# file: ./my-workflow/overrides.yaml
git-clone:
- name: "repo_url"
type: "string"
value: "https://github.com/sqreen/go-dvwa"
- name: "reference"
type: "string"
value: "master"
slack:
- name: "slack_webhook"
type: "string"
value: "Your webhook here"
SaaS
- In the Smithy UI, open the page to create a new workflow.
- Find Slack in the reporters section.
- Configure the parameters in the form
Options
You can configure this component with the following options:
| Option Name | Description | Default | Type |
|---|---|---|---|
| [Required] slack_webhook | Slack webhook | String |