Login Start Free Trial Login Start Free Trial
 

Slack

slack Logo

StackHawk’s official Slack integration.

Overview

The StackHawk Slack integration will send notifications to your Slack workspace whenever a scan is run and completed, reporting the findings as it goes. This Integration follows the OAuth 2.0 authorization code grant flow to enables a Slack workspace to communicate with StackHawk.

Features

  • Configured Slack channels will get notifications when HawkScan runs and when it completes.
  • On a successful scan, configured channels will be sent a summary of findings with a link to the StackHawk Platform to view the full results.
  • On scan failures, configured channels will be sent a summary of the error and a link that points to the stacktrace and error conditions.

Slack Scan Completed Example

Requirements

StackHawk:

  • You must have a StackHawk account.

Slack:

  • You must be currently signed in or able to login to the Slack workspace you wish to add the integration to.
  • You must have sufficient permissions to install Slack Apps in your workspace.

Scopes

With this integration you authorize StackHawk with the following Slack scopes:

  • View basic information about public channels in the workspace
  • View basic information about private channels that StackHawk has been added to
  • Send messages as @stackhawk
  • Send messages to channels @stackhawk isn’t a member of

Setup

Click here to authorize and configure the Slack Integration in the StackHawk Platform

  1. Log into StackHawk and visit the Slack Integration page in StackHawk
  2. Click the Install StackHawk for Slack button. This will open in a new tab where you will authorize Slack with the given scopes. Note: You must complete the authorization within an hour before the link expires.
  3. Once Authorized, the Slack Integration is complete! It can now be configured.

Configuration

Once authorized, the integration can be configured in the StackHawk platform. Select which workspace channels you want your Slack notifications going to.

Slack Integration Configuration in Stackhawk Platform

  • The Slack integration configuration is assigned per-channel. For each connected Slack channel, you can specify which Applications and which Environments will send notifications when scanned.

  • By default, if no Applications are selected for the channel configuration, Slack notifications will be sent for all applications when scanned. The same is true for selected environments. Specific environments can be selected for the channel if at least one application is configured for the channel.

  • Each Slack channel configuration can be individually edited or removed with the vertical ellipsis ⋮ to the right of the row of the Slack channel.

Edit Slack Integration in Stackhawk Platform

  • To send Slack notifications to a private channel, you will additionally need to first invite the @stackhawk bot user to that channel. You can do this by sending a message in the private channel mentioning @stackhawk , or within the channel member list controls. Once invited, the private channel will appear in the channel select configuration dropdown. Similarly, if you change a public channel to private, you will need to invite the StackHawk bot user into that Slack Channel for it to continue to send notifications.

  • To send Slack notifications to a specific channel you cannot find in the typeahead dropdown, you can optionally search by the Slack channel ID. You can find the channel ID by right-clicking the Slack channel and selecting View Channel Details. The channel ID will be copyable at the bottom of the modal. Slack Channel IDs will start with a C if it’s a public channel and a G if it’s private.

Troubleshooting

If StackHawk is having difficulty finding a Slack channel in your workspace, be sure to check the following:

  • Invite the @stackhawk bot user to the private Slack channels you want to notify.
  • Search for the exact Slack channel ID by querying for it’s channel ID.

If StackHawk is having difficulty connecting to Slack or sending notifications, be sure to check the following:

  • Ensure you have configured a channel to send to, with configuration matching the scanned application.
  • Check the Slack status page for technical updates.
  • Confirm the integration is still present from the connected Slack workspace.
  • As a last resort, you can remove and reenable the integration, however this will reset the Slack integration configuration.

If the problem persists, please reach out to StackHawk Support for assistance.

Feedback

Have any suggestions, feature requests, or feedback to share? Contact StackHawk Support .