This n8n workflow automates the process of initiating vulnerability scans and generating detailed reports directly from Slack, streamlining security operations. The workflow begins with a webhook trigger, which listens for Slack interactions such as slash commands or modal submissions. It then routes messages intelligently based on callback IDs, identifying whether the user wants to start a vulnerability scan or generate a report.

When a user triggers a vulnerability scan, the workflow opens a Slack modal form requesting details such as scan options, asset groups, and a custom scan title. After submission, these inputs are captured and used to initiate a vulnerability scan through the Qualys API, with relevant variables dynamically set within the workflow.

Similarly, for report generation, the workflow presents another modal to gather report-specific inputs like template choice and output format. Once submitted, it triggers the creation of a comprehensive scan report using Qualys and sends the resulting PDF or format directly into a designated Slack channel.

Additional nodes provide user guidance via sticky notes and ensure smooth operation by closing modals and responding to Slack events. This integration creates an efficient, one-click security management tool within Slack, enhancing real-time vulnerability assessment and reporting capabilities for security teams.