Security & Compliance
Lynx Compliance - Slack Connector
Pulls compliance evidence from Slack - channel inventory, user inventory, Enterprise Grid audit log - via the Slack Web API.
lynx_compliance_connector_slack
· v19.0.1.0.0
· Premium
What this solves
Lynx Compliance - Slack Connector
Compliance evidence pulled from Slack via the Web API. Three resource types target the controls auditors examine on the collaboration / messaging surface:
Channels (CSF ID.AM-04, ISO A.5.7): workspace channel inventory. Auditors care about which channels exist and which are private.
Users (CSF PR.AA-01, ISO A.5.16): workspace user inventory with admin / owner / external-guest flags.
Audit log (CSF DE.CM-01, ISO A.8.16): Enterprise-Grid-only admin event log. Gracefully reports feature_available=False on lower Slack plans.
Authentication is a Bearer Slack token (xoxb- bot or xoxp- user token) with the appropriate scopes:
channels:read + groups:read (for channels resource)
users:read + users:read.email
auditlogs:read (Enterprise Grid only — for audit log)
Key Features
Slack connector type - Bearer token in credential_secret + optional config_json.endpoint for Enterprise Grid teams behind compliance-mode VPC peering.
Three resource pulls - channels, users, audit log (Enterprise Grid). Cursor-based pagination via response_metadata.next_cursor.
Pre-seeded collectors - three collectors covering ID.AM-04 (channel inventory), PR.AA-01 (user inventory), DE.CM-01 (Enterprise Grid audit log).
Audit-log graceful degradation - workspaces below Enterprise Grid don't have the audit-log API; the connector reports the feature as unavailable rather than erroring.
Integrates With
lynx_compliance_connectors - registers under the connector framework.
lynx_compliance_evidence_collectors - shipped collectors use the standard schedule.
Slack Web API via the requests HTTP client.
Try Lynx Compliance - Slack Connector on your team.
Free trial, no credit card. Talk to sales when you're ready.