Open a Zoho Desk ticket the instant GitHub finds a leaked secret

An exposed API key can't wait until you happen to check the Security tab. Notis reacts to each new secret scanning alert and opens a Zoho Desk ticket right away, so the most time-sensitive findings become an action item you can't miss.

Trigger

New Secret Scanning Alert Detected

Triggers when a new secret scanning alert is detected in a GitHub repository. Monitors open secret scanning alerts and fires an event for each newly detected alert. Supports filtering by secret type (e.g., personal access tokens, AWS keys) and by token validity status (active, inactive, unknown). The payload includes the alert number, secret type, validity status, resolution state, timestamps, URLs, and flags for push protection bypass, public exposure, and multi-repo detection.

Zoho desk logo

Action

Create Ticket

Tool to create a new Zoho Desk ticket with subject, description, department, and requester details. Use when you need to create a support ticket in Zoho Desk. Returns the created ticket with id and webUrl for downstream chaining.

Why this helps

A committed secret is one of the scariest alerts to miss, yet it looks like every other GitHub notification you have learned to tune out.

  • Credential leaks become a flagged ticket the moment they are detected
  • You handle the highest-risk alerts without watching GitHub all day
  • The alert lands in the same queue you already check, so it can't hide
  • You get a clear paper trail of how each leak was addressed

Setup

Build it in a few focused steps.

  • 1Connect GitHub and Zoho Desk to Notis once in the portal.
  • 2Create a new automation and phrase it plainly: when GitHub detects a new secret scanning alert, open a Zoho Desk ticket so it gets handled fast.
  • 3Pick the GitHub secret scanning alert trigger and choose the channel for run reports.
  • 4Confirm the flow with one real or test alert and check Zoho Desk for the ticket.

Questions about this workflow

Can I mark these tickets as high priority?

Yes. Say that leaked-secret tickets should be high priority in your instruction and Notis will set that when it creates them.

Does it cover all secret types?

You can ask Notis to act on every secret type, or narrow it to specific ones like access tokens, in plain language.

Is there a record of every alert handled this way?

Yes. Notis posts each run to your chosen channel, and every alert has its own ticket in Zoho Desk.

When this happens · Trigger

Do this · Action

Supported Triggers and Actions

Notis builds workflows that link GitHub to Zoho desk. A trigger fires from one place; an action lands in another.

GitHub logo

GitHub triggers

Zoho desk logo

Zoho desk actions

New Workflow Artifact Created

Triggers when a new workflow artifact is created in a GitHub repository. Monitors for newly created GitHub Actions workflow artifacts. Optionally filters by artifact name to restrict monitoring to specific artifacts.

TriggerPolling

Create Contact

Tool to create a new contact in Zoho Desk with name, email, and other details. Use this action when you need to add a new contact to the system, such as when onboarding a new customer or registering a support requester. Returns the created contact with id and webUrl for downstream operations.

ActionInstant

Branch Changed

Triggers when a GitHub branch changes. Monitors a specific branch for: - New commits pushed (head commit SHA changes) - Protection status toggled (branch becomes protected or unprotected) - Protection settings changed, including: required status checks and their enforcement level, admin enforcement, required pull request reviews (dismiss stale reviews, code owner reviews, approving review count, last push approval), required linear history, force push allowance, deletion allowance, conversation resolution, branch locking, and fork syncing.

TriggerPolling

Create Ticket

Tool to create a new Zoho Desk ticket with subject, description, department, and requester details. Use when you need to create a support ticket in Zoho Desk. Returns the created ticket with id and webUrl for downstream chaining.

ActionInstant

New Branch Created

Triggers when a new branch is created in a GitHub repository. Detects newly created branches. Deleted branches do not fire events.

TriggerPolling

Download Ticket Attachment

Download a file attachment from a Zoho Desk ticket by attachment ID. Use this action when you need to retrieve a specific file that was previously attached to a ticket. Requires both the ticket ID and the attachment ID to identify the file to download.

ActionInstant

Check Run Status / Conclusion Changed

Triggers when a specific GitHub check run changes its status or conclusion. Monitors a single check run for changes to: status (queued, in_progress, completed, etc.), conclusion (success, failure, neutral, cancelled, skipped, timed_out, action_required), started_at, and completed_at.

TriggerPolling

Get Agent

Tool to fetch details of a Zoho Desk agent. Use when you have an agent ID and need its full data, optionally including related resources.

ActionInstant

Check Suite Status / Conclusion Changed

Triggers when a GitHub check suite changes its status or conclusion for a given ref. Monitors all check suites associated with a git reference (branch, tag, or commit SHA) for changes to status (queued, in_progress, completed, etc.) and conclusion (success, failure, neutral, cancelled, skipped, timed_out, action_required, startup_failure, stale). Optionally filters by GitHub App ID.

TriggerPolling

Get Agents Count

Tool to get the total count of agents in Zoho Desk. Use when you need the number of agents optionally filtered by status, confirmation, or light agents.

ActionInstant

New Code Scanning Alert Created

Triggers when a new code scanning alert is created in a repository. Fires an event for each newly created code scanning alert detected in the configured repository. Alerts can be filtered by Git reference, scanning tool, state, and severity. The payload includes the alert number, rule details, tool information, state, severity, and the location of the most recent instance.

TriggerPolling

Get Contact

Tool to fetch details of a Zoho Desk contact. Use when you have a contact ID and need its full data, optionally including accounts or owner details.

ActionInstant

New Repository Collaborator Added

Triggers when a new collaborator is added to a GitHub repository. Monitors the full list of collaborators on a repository and fires an event for each newly added collaborator. The payload includes the collaborator's GitHub username, account ID, profile URL, avatar URL, permission flags (pull, triage, push, maintain, admin), and assigned role name.

TriggerPolling

Get Contacts By IDs

Tool to fetch multiple contacts by their IDs using Zoho Desk's contactsByIds endpoint.

ActionInstant

Commit Event

Triggered when a new commit is pushed to a repository.

TriggerInstant

Get Department

Tool to fetch details of a Zoho Desk department by ID.

ActionInstant

Connect any two apps with Notis in the middle.

Not just GitHub and Zoho desk. Any combination from 985+ integrations.

When this happens · Trigger

Do this · Action

Save your first hour today.

7 days free trial with 20$ free usage included.
No card. Works with personal or business Zoho desk.