The Orca App
The slack bot can be found in your Slack 'Apps' list. Click on the "Orca Security security assistant".
At this point, you can either interact with it directly or add it to a channel.
Currently, all members of the slack workspace have access permissions to the Orca app.
To perform an operation, simply write the command and see the bot response
You can get the up-to-date list of support operations saying 'help'.
Displays top (up to 10) most severe alerts, ordered by severity.
Displays "compromised" (up to 10) alerts. As opposed to "top" will not display other severities.
Displays all assets vulnerable by this CVE and details the affected packages.
Get a notification for alert status changes. Notifications can be configured generally for all alerts (new alerts, resolved alerts) or regarding a specific alert id. Notify is a bit more advanced operation and has a help menu of its own.
Set the channel to get notified on.
Show current notification configuration.
Subscribe to get notified on a specific alert ID. (add/remove)
Some specific alerts are critical to the organization and thus are important to follow until resolution. "notify ids" allows monitoring specific alerts by adding them to the monitored list and getting notified on every change.