Xray allows the user to get email notifications for every violation that was triggered, Either by initial scanning or by Impact Analysis which adds vulnerabilities when the vulnerability database is updated (Database Sync).
In order to trigger email notifications you have to set an email server in Artifactory and you have the following options In Xray Policies configurations:
- Notify Email policy
- Notify watch recipients policy and add the recipients in the watch
- Set notify deployer to set a notification for the developer who deployed the artifact
Email notifications can sometimes go wrong. Here are common mistakes that might happen:
- Email notification is not working
- The wrong email is getting the email notification
- Notification is working but I’m seeing errors in the logs about email