High
Unknown API Key
v1Session authenticated with an API key not present in the org allowlist.
Updated 2 days ago
Monitor
Sessions Governed
1
Compliance
0
Violations
1
Notification Recipients
security-team@company.com
alice@company.com
#security-alerts (Slack)
Detection Rules
Add Rule
match
api_keyis not inorg_allowlist
API key must be present in the organization allowlist
condition
session.statusequalsactive
Only evaluate against active sessions
Enforcement Mode
Monitor (log only)
Record violations without blocking sessions
Block session
Terminate sessions that violate this policy
Recent Violations
Session | User | Agent | Time | Action Taken |
|---|---|---|---|---|
| sess_abc123 | alice@company.com | Claude Code v1.2.0 | 2 min ago | Logged |
| sess_def456 | bob@company.com | Cursor v0.42.0 | 1 hr ago | Logged |
| sess_ghi789 | ci-runner-04 | LangChain v0.3.1 | yesterday | Logged |
Notifications
Add Notification
When violation occurs → POST https://hooks.example.com/security
Every time
When violation occurs → Slack #security-alerts
No more than 1 per hour