LobsterHoney Docs
Settings

Alert Setup

Configure Slack, email, and Discord notifications for threat detections.

LobsterHoney sends real-time alerts when AI agents are detected on your protected sites. You can configure multiple notification channels -- Slack, email, and Discord -- to ensure your team is notified immediately when a threat appears.

Slack Notifications

In the dashboard, go to Settings > Notifications.

Add a Slack channel

Click Add Slack Channel to begin setup.

Paste your Slack webhook URL

Create an incoming webhook in your Slack workspace (via api.slack.com/apps) and paste the webhook URL into LobsterHoney. It looks like https://hooks.slack.com/services/T00/B00/xxx.

Configure severity threshold

Choose which severity levels trigger Slack alerts. For example, you might only want notifications for High and Critical sessions to reduce noise.

Send a test notification

Click Test to send a sample alert to your Slack channel. Verify it arrives before saving.

Email Alerts

Email notifications are the simplest channel. Enable or disable alerts per severity level from the Notifications settings page. Emails are sent to the address associated with your account.

No additional setup is required -- email alerts work out of the box.

Discord Notifications

Discord uses the same webhook pattern as Slack:

  1. Create a webhook in your Discord server (Server Settings > Integrations > Webhooks)
  2. Copy the webhook URL
  3. Paste it into the Add Discord Channel form in LobsterHoney
  4. Configure your severity threshold and send a test message

Webhook URLs are secrets. LobsterHoney stores them encrypted and never exposes them in the dashboard after initial setup. If you lose a webhook URL, create a new one in your Slack or Discord settings.

Notification Behavior

  • Alerts fire when a session is first classified as AI_AGENT or AI_AGENT_MALICIOUS
  • Additional alerts fire if a session's severity is escalated (e.g. from High to Critical)
  • Alerts are deduplicated per session -- you will not receive repeated notifications for the same agent
  • During high-traffic periods, notifications may be batched to respect Slack and Discord rate limits

Custom Webhooks

For programmatic integration beyond Slack and Discord, you can register custom HTTP webhook endpoints. These receive the same event payloads as the Events API. See Webhook Setup for configuration, signature verification, and payload format.

See Also

Webhook SetupAPI Keys

FAQ

Frequently asked questions about LobsterHoney setup, detection, and troubleshooting.

API Keys

Create and manage API keys for programmatic access to the LobsterHoney API.

On this page

Slack NotificationsNavigate to notification settingsAdd a Slack channelPaste your Slack webhook URLConfigure severity thresholdSend a test notificationEmail AlertsDiscord NotificationsNotification BehaviorCustom WebhooksSee Also