Snyk encourages all customers using the Slack integration to adopt the Snyk app for Slack and get the following benefits and more:
- Improved support for Snyk products: Open Source, Code, Container, and IaC
- Support for filtering on severity levels
- Support for overriding notifications at a Project level
Vulnerabilities detected on initial import of Projects are not sent to Slack immediately.
The Snyk app for Slack highlights vulnerability information found across your software Projects and presents actionable context within your Slack workspace channels. Your teams get the issue notifications that matter the most, and can act on them immediately, without leaving Slack. This has the advantage of:
- Enhancing collaboration to quickly discuss and resolve vulnerabilities
- Maintaining awareness of relevant and emerging vulnerabilities
- Minimizing disruptions with issue notification thresholds
To enable the Snyk app for Slack, you must do the following:
- 1.Authorize the app with Snyk to get new issues data that can be forwarded to your Slack workspace.
- 2.Authorize the app with your Slack workspace to allow Snyk to send notifications to your channels in the workspace.
Snyk integrations Slack App tile
This launches the authorization flow, allowing Snyk access to your Snyk app for Slack:
Add Slack to Snyk
After Snyk has been authorized, you will be asked to authorize Slack to connect to Snyk for Slack. Click Allow:
Authorize Slack to connect to Snyk
If multiple Slack workspaces are available, a drop-down will be visible at the top right of the page. Select the desired Slack workspace.
After this step is complete, you can configure the integration to choose which Slack channel the Organization's issue notifications are sent to and also filter by severity level:
Choose Slack channel and severity level for the notifications from the Organization
To add the Snyk for Slack app to a private channel, you must first add the app manually to the channel from within Slack and then select the channel within the Snyk integration.
In the Private channel, select Channel settings - Integrations, and then Add an app. Search for Snyk for Slack and select add. After you have done this, the channel is displayed on the Settings page for the integration.
Once the Slack app has been configured as indicated above, new issue notifications will be forwarded to the selected Slack channel according to the desired severity level threshold.
Example of a new critical vulnerability notification received in Slack
To remove the Snyk app for Slack, navigate to the settings page, locate Remove Slack Snyk app at the bottom of the page, and click the Disconnect Slack button:
Remove Slack App integration
Before attempting to use these endpoints, ensure that you have retrieved your authentication token and Organization ID (
org_id) as outlined in the steps of the Getting started using Snyk REST API guide.
Ensure you apply the
expand=appquery string on your request. This enables you to find the Bot with a related Snyk App named Slack App.
After retrieving the
project_idvalues, you can use the following create, read, update, and delete API operations: