BLT-Sammich Slack Bot

A feature-rich Slack bot that bridges your team communication with GitHub workflows, contributor tracking, and OWASP project discovery - all from within Slack.

Slack Integration GitHub API OWASP Community

How It Works

Type Slash Commands

Use simple commands like /contributors directly in any Slack channel

Real-time Processing

Bot fetches live data from GitHub API and OWASP repositories via WebSocket connection

Instant Results

Get formatted responses with contributor stats, project info, and repository links

Available Commands

/contributors

Track Contributor Activity

Shows PR merges, issues resolved, and comments from the last 7 days

📊 Contributors Activity
• john_dev: 3 PRs, 2 issues, 5 comments
• jane_contributor: 1 PR, 4 issues, 2 comments
/ghissue [title]

Create GitHub Issues

Instantly create GitHub issues from Slack conversations

/ghissue Fix mobile login bug
✅ Issue created: github.com/repo/issues/123
/project [name]

Discover OWASP Projects

Browse 800+ OWASP projects with descriptions and links

/project zap
🔍 OWASP ZAP - Web security scanner
📋 Features, docs, and community links
/repo [technology]

Find Repos by Tech Stack

Get repositories matching your programming skills and interests

/repo python
🐍 Python repositories where you can contribute:
• OWASP-Project-A • Security-Tool-B

Under the Hood

Socket Mode Connection

Slack Servers
WebSocket
BLT-Sammich
REST API
GitHub API

Why Socket Mode?

  • • Works behind firewalls (outbound connection)
  • • No public URL needed for development
  • • Real-time bidirectional communication
  • • Perfect for internal team tools

Built With

  • Slack Bolt: Python framework for Slack apps
  • PyGithub: GitHub REST API integration
  • Poetry: Dependency management
  • Plugin Architecture: Modular command system

Getting Started

For Users

  1. 1 Join your team's Slack workspace
  2. 2 Find the BLT-Sammich bot in your workspace
  3. 3 Start using commands like /contributors

For Developers

  1. 1 Clone the repository and install dependencies
  2. 2 Create Slack app and get tokens
  3. 3 Run locally with python app.py
View on GitHub

Part of the OWASP Ecosystem

BLT-Sammich is built for the OWASP BLT (Bug Logging Tool) community. It helps teams manage security projects, track contributions, and discover the vast ecosystem of OWASP security tools.

Security First

Built with security best practices for the cybersecurity community

Open Source

Fully open source, transparent, and community-driven development

Community

Connects developers with 800+ OWASP projects and active contributors