Slack Notifications¶
Connect Parapet Security to your Slack workspace for real-time alert notifications with rich formatting.
Prerequisites¶
- A Slack workspace where you have permission to add apps
- Admin or Owner role in Parapet Security
Connecting Slack¶
Step 1: Navigate to Settings¶
- Log in to app.parapetsecurity.com
- Go to Settings → Notifications
- Click the Channels tab
- Find the Slack card
Step 2: Connect Workspace¶
- Click Connect to Slack
- You'll be redirected to Slack
- Select your workspace
- Click Allow to authorize Parapet Security
Permissions Requested
Parapet Security requests:
chat:write- Post notifications to channelschannels:read- List available channelsteam:read- Get workspace information
Step 3: Select Channel¶
After authorization:
- You'll return to Parapet Security
- Click Select Channel
- Choose where notifications should go
- Click Save
Dedicated Channel
Create a dedicated #security-alerts channel for Parapet notifications. This keeps your other channels clean and makes it easy to find alerts.
Step 4: Test Connection¶
- Click Send Test Message
- Check your Slack channel
- You should see a test notification
Notification Format¶
Parapet Security sends rich Slack messages using Block Kit:
┌────────────────────────────────────────────────────────┐
│ 🔴 Critical Alert │
├────────────────────────────────────────────────────────┤
│ │
│ SSH Brute Force Attack Detected │
│ │
│ Severity: Critical │
│ Confidence: 94% │
│ Category: Authentication │
│ │
│ Affected: │
│ • Host: web-server-01 │
│ • User: root │
│ • Source IP: 45.227.253.98 │
│ │
│ ────────────────────────────────────────────────── │
│ │
│ Recommendation: │
│ Block source IP at firewall immediately │
│ │
│ [View in Dashboard] [Dismiss] │
│ │
└────────────────────────────────────────────────────────┘
Message Elements¶
| Element | Description |
|---|---|
| Severity Icon | Color-coded icon (🔴 🟠 🟡 🔵) |
| Title | AI-generated alert summary |
| Details | Key alert information |
| Affected Entities | Hosts, users, IPs involved |
| Recommendation | Top priority action |
| Actions | Quick links to dashboard |
Configuration Options¶
Severity Filter¶
Only notify for certain severity levels:
- Go to Settings → Notifications → Overview
- Set Minimum Severity
- Slack notifications will respect this setting
Channel Selection¶
Change the notification channel:
- Go to Settings → Notifications → Channels
- Click Change Channel under Slack
- Select the new channel
- Click Save
Multiple Channels¶
To send to multiple channels (e.g., different teams):
- Set up the primary channel in Parapet Security
- Use Slack workflows to cross-post to other channels
Team Feature
Direct multi-channel support is available on Team plans. Upgrade to Team for this feature.
Interactive Actions¶
Slack notifications include interactive buttons:
| Button | Action |
|---|---|
| View in Dashboard | Opens alert detail in browser |
| Dismiss | Marks alert as dismissed |
| Mark Reviewed | Marks alert as reviewed |
Permissions
Interactive actions require the user to be logged into Parapet Security with appropriate permissions.
Slack Digest¶
For lower-priority alerts, enable digest mode:
- Go to Settings → Notifications → Advanced
- Enable Digest
- Set frequency (Hourly, Daily, Weekly)
Digest messages summarize alerts:
┌────────────────────────────────────────────────────────┐
│ 📊 Daily Security Digest │
├────────────────────────────────────────────────────────┤
│ │
│ Alerts in the last 24 hours: 47 │
│ │
│ By Severity: │
│ • Critical: 0 │
│ • High: 3 │
│ • Medium: 15 │
│ • Low: 29 │
│ │
│ Top Affected Hosts: │
│ 1. web-server-01 (12 alerts) │
│ 2. db-server-02 (8 alerts) │
│ 3. app-server-01 (5 alerts) │
│ │
│ [View All Alerts] │
│ │
└────────────────────────────────────────────────────────┘
Disconnecting Slack¶
To remove the Slack integration:
- Go to Settings → Notifications → Channels
- Click Disconnect under Slack
- Confirm the disconnection
This:
- Stops all Slack notifications
- Revokes Parapet Security's access
- Does not delete message history
Troubleshooting¶
"Slack connection failed"¶
- Ensure you have permission to add apps to the workspace
- Try a different browser or incognito mode
- Check if your Slack workspace has app restrictions
"Channel not found"¶
- The channel may have been deleted or renamed
- Click Change Channel to select a new one
- Ensure the Parapet Security app is still in the channel
"Test message not appearing"¶
- Check you're looking at the correct channel
- Verify the channel selection was saved
- Check Slack's notification settings aren't muting the channel
Reconnecting After Expiry¶
Slack tokens can expire. If notifications stop:
- Go to Settings → Notifications → Channels
- Click Reconnect under Slack
- Re-authorize the app
Security Considerations¶
- Slack integration uses OAuth 2.0 (secure)
- Tokens are encrypted at rest
- Only workspace admins can authorize apps
- Parapet Security doesn't access message history
Next Steps¶
- Configure Email notifications - Backup notification channel
- Fine-tune notification settings - Optimize for your workflow
- Troubleshoot issues - If something isn't working