Documentation

Slack Integration

Send vulnerability alerts to Slack channels.

The Slack integration sends real-time alerts to a channel of your choice when CodeSentinel detects issues in a pull request or when a merge is blocked.

Setup

  1. 1

    Go to Dashboard → Integrations → Slack and click Connect.

  2. 2

    Authorise the CodeSentinel Slack App in your workspace.

  3. 3

    Select the channel to post alerts to.

  4. 4

    Choose which severity levels trigger a notification.

  5. 5

    Click Save.

Configure via codesentinel.json

You can also configure Slack notifications at the repository level using codesentinel.json. Store your webhook URL as a repository secret and reference it with ${env:VAR_NAME}:

json

{
  "notifications": {
    "slack": {
      "webhook": "${env:SLACK_WEBHOOK_URL}",
      "channel": "#security-alerts",
      "on": ["critical", "high"],
      "includeFixSuggestion": true
    }
  }
}

Alert format

Each Slack alert includes: severity badge, rule name, repository and PR link, affected file and line number, and a link to apply the AI fix from the CodeSentinel dashboard.

Reduce noise

Set "on": ["critical"] to only alert on the highest-severity issues. You can always review Medium and Low findings in the dashboard.

Previous

Rule Reference

Next

Jira