marcieltorres / safe-chat-slack-bot Goto Github PK
View Code? Open in Web Editor NEWSafeChat Slack Bot is an open-source project designed to enhance data security within Slack workspaces.
License: MIT License
SafeChat Slack Bot is an open-source project designed to enhance data security within Slack workspaces.
License: MIT License
Nowadays this project is more like a POC, so we should to improve using the bolt-python-starter-template main structure.
ref:
https://github.com/slack-samples/bolt-python-starter-template
slack-bot-no-cpf
is a temporary name for this project, so we are searching for a new name for The Bot and SafeChat
can be a good name as well. However, we should use this issue to discuss about this (or another) name. 🚀
When you send a message without sensitive data and right after edit this message putting some sensitive data, the bot do nothing about it.
You can send a message without sensitive data and right after edit this message putting some sensitive data
The bot must be send the warning message about sensitive data.
The bot do nothing about it.
Making the Bot public for all slack workspaces 🚀
ref:
https://api.slack.com/start/distributing
https://github.com/slack-samples/bolt-python-starter-template/blob/main/README.md#app-distribution--oauth
The Bot must be multi language
to automatically adapt to other realities. We need to structure automatic translations to evolve into other languages in a simple and scalable way.
We must not consider to use chatGPT or similar because we don't to expose the sensitive data to external service.
refs:
https://lokalise.com/blog/beginners-guide-to-python-i18n/
https://phrase.com/blog/posts/translate-python-gnu-gettext/
https://docs.python.org/pt-br/3/library/gettext.html
The ideal of the bot is to educate people so that they do not share sensitive information through Slack. However, it may be that eventually, in a specific situation, sharing sensitive data becomes necessary. In this case, the bot could offer a safer way for sharing sensitive data in public channels.
Something like @safebot /security-message sensitive data, perhaps with the possibility to share via DM as well. Anyway, there are possibilities to be explored for this feature. Perhaps exploring features similar to 1Password.
Improving the docs using a external site, gh pages may be a good idea.
ref about gh pages:
https://docs.github.com/pt/pages/getting-started-with-github-pages/creating-a-github-pages-site
ref about some slack bots:
Users often share images (such as screenshots) in public channels on Slack that may contain sensitive user data. Considering this scenario, the bot should be able to recognize sensitive data in images and also alert these users.
We should use some python lib to do it, like https://github.com/tesseract-ocr/tesseract
refs:
Create a manifest.json file facilitating the slack creation application flow.
refs:
https://api.slack.com/reference/manifests
https://github.com/slack-samples/bolt-python-starter-template/blob/main/manifest.json
https://github.com/slack-samples/bolt-python-starter-template/tree/main?tab=readme-ov-file#create-a-slack-app
PTBR Version:
Essa issue em especial terá uma descrição também em pt-br
Como esse bot foi concebido para atuar fortemente junto com a LGPD no Brasil, ;e uma boa estratégia criar um REAMDE resumido todo no idioma pt-br com as principais informações sobre o bot, talvez até o tópico https://github.com/marcieltorres/safe-chat-slack-bot?tab=readme-ov-file#installing-on-workspace, as demais informações são técnicas e podem continuar apenas no idioma en. Essa estratégia visa também facilitar a busca com palavras chave para o bot, ajudando quem está pesquisando em português a encontrar essa solução.
EN Version:
As this bot was designed to strongly align with LGPD in Brazil, it is a good strategy to create a summarized README entirely in Brazilian Portuguese with key information about the bot, perhaps even the topic https://github.com/marcieltorres/safe-chat-slack-bot?tab=readme-ov-file#installing-on-workspace, while keeping other information technical and in English only. This strategy also aims to facilitate keyword searches for the bot, helping those who are researching in Portuguese to find this solution.
ref: #9
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.