Snap-insIntegrate

Coralogix security integration

The Coralogix security integration snap-in enables automatic creation and management of DevRev issues based on security alerts from your Coralogix instance. This integration helps streamline your security incident response workflow by bringing Coralogix alerts directly into your DevRev workspace.

Features

  • Automatic creation of issues in DevRev when Coralogix security alerts are triggered
  • Rich context integration with detailed alert information
  • Smart priority mapping between Coralogix severity and DevRev priorities
  • Structured custom fields for enhanced alert tracking

Install

  1. Go to Settings > Integrations > Snap-ins.

  2. Search for Coralogix Security Integration and click Install.

  3. Configure the snap-in settings:

    • Select the default Part ID for issue creation
    • (Optional) Set a default owner for created issues
    • (Optional) Configure tags to be added to issues
    • Click Save > Install

  4. After installation, you receive:

    • A webhook URL
    • A secret signature key

Configure coralogix webhook

  1. In your Coralogix console, go to Data Flow > Outbound Webhooks > Generic Webhook.

  2. Click Add new webhook destination.

  3. Configure the webhook:

    • Set the HTTP method to POST
    • Paste the copied webhook URL in the URL field
    • Add the following header for authentication: 
      X-DevRev-Signature: <your-secret-signature-key>
      Replace <your-secret-signature-key> with the signature key provided during installation.

  4. Configure the payload format according to your alert requirements.

The secret signature key is used to verify that webhook requests are genuinely from your Coralogix instance. Keep it confidential and never share it publicly.

Custom fields

The integration creates and populates the following custom fields for each issue:

Field NameDescription
Alert NameName of the triggered security alert
Alert ActionAction taken by Coralogix
Alert Event TimestampTime when the alert was triggered
Application NameAffected application or service
Alert URLDirect link to the alert in Coralogix
Alert MetadataStructured alert details and context

Priority mapping

The integration automatically maps Coralogix severity levels to corresponding DevRev priorities:

Coralogix SeverityDevRev Priority
criticalP0
errorP1
warningP2
infoP3

Using the Integration

Once configured, the integration works automatically:

  1. When a security alert is triggered in Coralogix, it sends the alert data to DevRev.
  2. The snap-in validates the webhook signature.
  3. Upon successful validation, it creates a new issue with:
    • Alert details in the description
    • Mapped priority level
    • Configured tags
    • Assigned owner (if specified)
    • Populated custom fields

Troubleshooting

If you encounter issues with the integration:

  1. Verify the webhook URL is correctly configured in Coralogix.
  2. Ensure the signature header is set with the correct secret key.
  3. Check that the snap-in configuration has the correct Part ID.
  4. Review the webhook delivery logs in Coralogix for any authentication errors.
  5. Verify that the secret signature key is correctly formatted in the header.

On this page

Features
Install
Configure coralogix webhook
Custom fields
Priority mapping
Using the Integration
Troubleshooting