Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Create an actual slack bot #29

Open
tarkatronic opened this issue Apr 24, 2023 · 0 comments
Open

Create an actual slack bot #29

tarkatronic opened this issue Apr 24, 2023 · 0 comments
Labels
design decision needed Feature request that requires discussion around designs enhancement New feature or request hacktoberfest Reporter: Slack Reporting Issues relating to the reporting functionality

Comments

@tarkatronic
Copy link
Contributor

🚀 Feature Request

Is your feature request related to a problem? Please describe.

Right now this "bot" only sends a report when it's actively run -- run the app, it sends out a one-off report. It'd be great to have it more on-demand.

Describe the solution you'd like

Add a new reporter that's an actual real Slack bot, that sits in a channel to respond to user queries. Then you would be able to run commands like:

# Gather the full org summary report
/vulnbot summary underdog-tech
# Gather a team summary report
/vulnbot team underdog-tech/team-name
# Gather an individual repo report
/vulnbot repo underdog-tech/vulnbot

I think this will lend well to actual developer workflows, as opposed to just having a report message go out once a week that might get ignored.

This would probably be run something like

./vulnbot -c config.toml slack-bot

To start with we could implement just a single command. Probably the full org summary report.

Describe alternatives you've considered

This could potentially be built as a separate application that imports this one as a dependency. But that feels like it might be excessive. Then again including a full Slack bot in an application where you just want to, for example, send emails might also be excessive. Definitely open to discussion on this.

Additional context

This definitely depends on #5 to be implemented first.
@tarkatronic tarkatronic added enhancement New feature or request triage New issue in need of triage design decision needed Feature request that requires discussion around designs Reporting Issues relating to the reporting functionality Data Sources Issues related to collection of security alerts and removed triage New issue in need of triage labels Apr 24, 2023
@tarkatronic tarkatronic removed the Data Sources Issues related to collection of security alerts label May 19, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
design decision needed Feature request that requires discussion around designs enhancement New feature or request hacktoberfest Reporter: Slack Reporting Issues relating to the reporting functionality
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@tarkatronic