Skip to main content

Slack Bot Token



  • Documentation:
  • Summary: Slack is a business communication platform. It supports the use of bots to automate some activities on channels. Bots can connect to the real time messaging API and post messages on their own behalf thanks to a bot token. They can also access a subset of API methods to better understand the channels, members, and messages received as part of its activities. Bot tokens are thus highly sensitive.
  • IPs allowlist: Slack's integrations support IPs allowlisting and will lock down token's usage to a given set of IP addresses if enforced. See allowlisting documentation for more details.
  • Scopes: Specific scopes can be attributed to a slack bot when creating the bot.

Revoke the secret

Tokens can be revoked using the auth.revoke API route. It is one of the few credentials that has this "auto revoke" feature. See revocation documentation for more details.

Check for suspicious activity

Monitoring suspicious activity of a given token is not directly mentioned in Slack's documentation. Yet, the activity of the slack bot can be manually monitored on the channel it is granted access to.

Details for Slack bot token

  • Family: Api

  • Category: Messaging system

  • Company: Slack

  • High recall: True

  • Validity check available: True

  • On-premise instances exist: False

  • Only valid secrets raise an alert: False

  • Minimum number of matches: 1

  • Occurrences found for one million commits: 0.9

  • Prefixed: True

  • PreValidators:

- type: ContentWhitelistPreValidator
- xoxb-


- text: "slack_client = SlackClient('xoxb-263594206564-FGqddMF8t08v8N7Oq4i57vs1')"
apikey: xoxb-263594206564-FGqddMF8t08v8N7Oq4i57vs1
- text: MY_SLACK_TOKEN = 'xoxb-263594206564-2343594206574-FGqddMF8t08v8N7Oq4i57vs1MBS')"
apikey: xoxb-263594206564-2343594206574-FGqddMF8t08v8N7Oq4i57vs1MBS
- text: fat_fingered_token = "xxoxb-263594206564-2343594206574-FGqddMF8t08v8N7Oq4i57LoTh4l"
apikey: xoxb-263594206564-2343594206574-FGqddMF8t08v8N7Oq4i57LoTh4l

How can I help you ?