@import url("https://fonts.googleapis.com/css2?family=Inter:wght@200;300;400;500;600;700;800;900&family=Roboto:ital,wght@0,300;0,400;0,500;0,900;1,300;1,400;1,500;1,700&display=swap");

@font-face {
  font-family: 'Nacelle';
  src: url('https://cdn.prod.website-files.com/62000f475eba4d3330543f5b/652d7a00b58f4090a56b69d4_Nacelle-SemiBold.otf') format('opentype');
  font-weight: 600;
  font-style: normal;
  font-display: swap;
}

:root {
  --dark-mode-aware-p-color-alt : rgba(0, 0, 0, 0.50);
  --dark-mode-aware-dark-background-color: #1A283B;
  --dark-mode-aware-dark-border-color: #666;
  --dark-mode-aware-dark-text-color: #eee;
  --dark-mode-aware-dark-wrapper-background-color: #364150;
  --dark-mode-aware-dark-link-color: #ffffff;
  --dark-mode-aware-keyboard-shortcut: "rgba(18, 18, 18, 0.85)";
  --hero-background-image-light: url("https://mintlify.s3.us-west-1.amazonaws.com/blinkops-2/img/HeroLightV.svg");
  --hero-background-image-dark: url("https://mintlify.s3.us-west-1.amazonaws.com/blinkops-2/img/HeroDark.svg");
  --landing-page-image-light: url("https://mintlify.s3.us-west-1.amazonaws.com/blinkops-2/img/Hero.svg");
  --landing-page-image-dark: url("https://mintlify.s3.us-west-1.amazonaws.com/blinkops-2/img/HeroDark.svg");
}

h1,
h2,
h3,
h4 {
  font-family: 'Roboto';
  letter-spacing: normal !important;
}

.prose :where(img):not(:where([class~=not-prose],[class~=not-prose] *)) {
  margin-top: 0px !important;
  margin-bottom: 0px !important;
  margin-right: 7px;
  
}

#fc .prose :where(img):not(:where([class~=not-prose],[class~=not-prose] *)) {
  margin-top: 0px !important;
  margin-bottom: 0px !important;
  margin-right: 7px;
  
}

#fc-actions .prose :where(img):not(:where([class~=not-prose],[class~=not-prose] *)) {
  margin-bottom: 2em !important;
  margin-right: 7px;
}


.hero-text h1{
  font-family: "Roboto";
  font-size: 60px;
  font-style: normal;
  font-weight: 800;
  line-height: 63px;
  letter-spacing: 2.4px;
}

.hero-text h3{
  font-family: "Roboto";
  text-align: center;
  font-size: 24px;
  font-style: normal;
  font-weight: 500;
  line-height: 25.2px;
  letter-spacing: 0.96px;
}

.background-image{
 background-image: var(--landing-page-image-light);
 height: 330px;
 -webkit-background-size: cover;
 -moz-background-size: cover;
 -o-background-size: cover;
 background-size: cover;
 position: relative;
 width: 100%; 
 display: flex; 
 align-items: center;
 justify-content: center;
 overflow: hidden;
}

.dark .background-image{
  background-image: var(--landing-page-image-dark);
}


.paragraph-block{
  text-align: start;
  text-wrap:inherit;
}

.paragraph{
  display: block;
  margin-block-start: 0.5em;
  margin-block-end: 1em;
  margin-inline-start: 0px;
  margin-inline-end: 0px;
  unicode-bidi: isolate;
  font-family: Roboto;
  font-size: 28px;
  font-style: normal;
  font-weight: 400;
 line-height: normal;
 color: var(----dark-mode-aware-p-color)
}

.dark .paragraph{
  color: #ffffff;
}

.iframe {
  height: 800px;
  width: 100%;
}

.iframe-wrapper {
  display: unset;
}

.iframe-media {
  display: none;
}

.hero {
  display: flex;
  flex-direction: row;
  flex-wrap: wrap;
  align-items: center;
  justify-content: space-evenly;
  text-align: center;
  padding: 2rem, 2rem, 2rem, 2rem;
  background-image: var(--hero-background-image-light);
  height: 326px;
  -webkit-background-size: cover;
  -moz-background-size: cover;
  -o-background-size: cover;
  background-size: cover;
}

.dark .hero {
  background-image: var(--hero-background-image-dark);
}


.hero-content {
  display: flex;
  flex-direction: column;
  align-items:flex-start;
  margin-bottom: 1rem;
}

.hero h1 {
  font-size: 2.5rem;
  font-weight: bold;
  margin-bottom: 1.5rem;
  color: black;
}

.search-bar {
  display: flex;
  align-items: center;
  background: transparent;
  border: 1px solid #d6d8db;
  border-radius: 0.5rem;
  overflow: hidden;
}

.search-bar input {
  border: none;
  padding: 0.75rem 1rem;
  width: 400px;
  height: 43px;
  background: transparent;
  font-size: 1rem;
  flex-grow: 1;
  outline: none;
  border-radius: var(--Sizes-Radius-R-4-px, 4px);
  border: 1px solid var(--Color-Transparent-White-10, rgba(255, 255, 255, 0.10));
  background: var(--Color-Transparent-White-05, rgba(255, 255, 255, 0.05));
  backdrop-filter: blur(8px);
}

.keyboard-shortcut {
  display: flex;
  align-items: center;
  background:transparent;
  border-radius: var(--Sizes-Radius-R-4-px, 4px);
  border: 1px solid var(--Color-Transparent-White-10, rgba(255, 255, 255, 0.10));
  backdrop-filter: blur(8px);
  padding: 0.5rem;
}

.keys span {
  font-size: 14px;
  background: rgba(0, 0, 0, 0.24);
  border: 1px solid rgba(62, 149, 255, 0.04);
  color: rgba(18, 18, 18, 0.85);
  padding: 0.2rem 0.4rem;
  border-radius: 4px;
  margin: 0 0.2rem;
}

.dark .keys span{
  background-color: rgba(62, 149, 255, 0.16);
  color: rgba(255, 255, 255, 0.85);
  border: 1px solid rgba(62, 149, 255, 0.04);
}

.grid-table{
  margin-top: 2rem;
  grid-column-gap: 2.5rem;
  grid-row-gap: 2.5rem;
  flex-flow: column;
  display: flex;
  align-items: center;
}

#api-grid {
  grid-column-gap: 5rem;
  grid-row-gap: 1.25rem;
  grid-template-rows: auto;
  grid-template-columns: 1fr 1fr 1fr 1fr;
  grid-auto-columns: 1fr;
  display: grid;
  justify-items: center;
}

.api-item {
  display: flex;
  padding: var(--Sizes-Padding-Possitive-32-px, 32px) var(--Sizes-Padding-Possitive-16-px, 16px);
  align-items: center;
  border: 1px solid #e0e0e0;
  border-radius: 16px;
  height: 100px;
  width: 300px;
  border-radius: 16px;
  border: 1px solid rgba(62, 149, 255, 0.04);
  background: #F4F4F4;
}

.api-item img {
  height: 24px;
  width: 24px;
  padding: 9px, 9px,9px 9px;
}

.api-item span {
  font-size: 1rem;
  font-weight: 400;
  color: #FFF;
}

.vendor-link{ 
color: #000000;
text-overflow: ellipsis;
font-family: Roboto;
font-size: 20px;
font-style: normal;
font-weight: 500;
padding-left: 24px;
letter-spacing: 1.12px;
}

.wrapper {
  display: flex;
  justify-content: center;
  align-items: center;
  width: 42px;
  height: 42px;
  flex-shrink: 0;
  border-radius: 8px;
  background: #E3DFDF;
}

.dark .dark-mode-aware {
  border: 1px solid rgba(62, 149, 255, 0.04);
  background: #1A283B;
}

.dark .wrapper {
  background-color: #364150;
}

.dark .vendor-link {
color: #ffffff;
text-overflow: ellipsis;
font-family: Roboto;
font-size: 20px;
font-style: normal;
font-weight: 500;
padding-left: 24px;
letter-spacing: 1.12px;
}

.table {
  width: 100%;
  overflow-x: auto; 
}

.table table {
  width: 100%;
  border-collapse: collapse;
  text-align: left;
}

.table th,
.table td {
  padding: 8px 12px;
  text-align: left;
  border-bottom: 1px solid #ddd;
}


table {
  display: table;
  max-width: 90%;
  margin: 20px auto;
}

.integrations-table table {
  border-collapse: collapse;
  border-style: solid;

  max-width: fit-content;
  text-align: left;
  table-layout: fixed;
  align-items: left;
  border-color: #000000;
}

.integrations-table code a {
  pointer-events: none;
  text-decoration: none;
  color: var(--ifm-table-cell-color);
  cursor: default;
}

.integrations-table th:first-child {
  width: fit-content;
}


.integrations-table th:second-child {
  width: 50%;
  padding-right: 10px;
}


#var-table th:first-child {
  width: 25%;
}

#var-table  th:nth-child(2){
  width: 50%;
}


.flow-table {
  width: 100%;
  overflow-x: auto; 
}

.flow-table td {
  line-height: 1;
  height: 15px; 
  vertical-align: middle; 
}


.flow-table table {
  border-collapse: collapse;
  border-style: solid;
  width: 100%;
  max-width: 100%;
  text-align: left;
  table-layout: fixed;
  align-items: left;
}

.flow-table th,
.flow-table td {
  width: 25%;
  height:25%;
  border: 1px solid #ccc;
  padding: 8px;
  text-align: left;
}

.table-functions {
  border-collapse: collapse;
  border-style: hidden;
  width: 100%;
  max-width: 100%;
  text-align: left;
  table-layout: fixed;
}

.footer-container {
  display: flex;
  flex-direction: row;
  justify-content: space-between;
  width: 100%;
  margin-top: 100px;
  align-items: center;
}

.footer-icons {
  display: flex;
  gap: 32px;
}

.footer-title {
  font-family: Roboto;
  font-size: 12px;
  font-style: normal;
  font-weight: 400;
  line-height: 16px;
}

.footer-display{
  display: flex;
  flex-direction: row;
}

.flow-control{
  display: flex;
}


@media only screen and (max-width: 768px) {

  .hero{
    flex-wrap: nowrap;
    flex-direction: column;
    justify-content: center;
  }

  #api-grid {
    grid-template-columns: 1fr 1fr; 
    grid-column-gap: 2rem;
  }

  .iframe {
    max-height: 100%;
    height: unset;
    border-radius: 32px;
  }

  .iframe-wrapper {
    display: block;
    position: relative;
    max-height: 200px;
    border-radius: 32px;
  }

  .iframe-media {
    align-items: center;
    flex-direction: column;
    justify-content: center;
    position: absolute;
    height: 100%;
    width: 100%;
    display: flex;
    backdrop-filter: blur(0.5em);
    background-color: rgba(34, 33, 38, 0.8);
    border-radius: 32px;
  }

  .table-functions th:first-child {
  width: 17%;
}

}

@media (max-width: 996px) {

  .hero{
    flex-wrap: nowrap;
    flex-direction: column;
    justify-content: center;
    width: 932px;
  }

  .grid-table{
     width: 932px;
     /* margin: 2rem 2rem 2rem 2rem; */
  }

  #api-grid {
    grid-template-columns: 1fr 1fr 1fr; 
    grid-column-gap: 1rem;
  }

  .api-item{
    height:92px;
    width: 270px;
  }

}


Example of Extracted Observables:

How It Works:

Detailed Explanation of Subflow 3 - Enrich Observables

Subflow 3 - Enrich Observables

Blink Documentation

The Blink REST API provides programmatic access to Blink data and functionality, enabling the management of resources such as workflows, users, cases, and more.

APIs

Blink REST API

Returns a list of connection types by a filter

List connection types

Returns a list of connections by a filter

List connections

Create connection

Delete Connection

Gets a Connection by id

Edit connection

Run workflow

Update a specific field in a given table.

Update Field for Table

Retrieve a list of records from a given case management table. For the list of out-of-the-box tables, visit our [Case Management documentation](https://docs.blinkops.com/docs/case-management/manage-tables).

List Records from Case Management Table

Remove a specific record from a given case management table.

Delete a Record from Case Management Table

Update a specific field in a given case management table.

Update Field for Case Management Table

Create an Alert

Update an Alert

Create an Attachment

Update an Attachment

Create a Case

Update a Case

Create an Observable

Update an Observable

Create a Task

Update a Task

Add users to group

Remove users from group

Get a list of users or groups in your Blink tenant.

Get users or groups

List user workspaces

Get a list of groups the user is a member of

Get groups of user

Delete group

List group users

Get a list of groups in your Blink tenant

Get groups

Create group

Gets the output of a specific workflow execution by ID.

Get Workflow's execution output

Add entities to workspace

Learn about Blink, its capabilities, and how it can benefit your organization.

About Blink: Getting Started

Instructions for signing up to the Blink Platform.

Creating a User Account

To use the Blink platform, you need to know the key concepts and terminology.

Key Concepts

In the subsequent section of the documentation, you will find sample tutorials and detailed instructions on creating different types of workflow offered by Blink.

Blink Tutorials

This tutorial shows you how to create a simple Workflow that prints Hello World in Bash and Python, using references from input parameters and references from previous Steps.

Creating a Simple Workflow: Hello World

In this tutorial we will show you how to create a Workflow that controls tags applied when a new EC2 instance is created.

Event-Based: Tag Control on a New EC2 Instance

Tutorial for creating an Self-Service Workflow

Self-Service: Create a Workflow to Consume a Terraform Project

Learn about workflows, their components, and how they automate tasks across multiple systems through a centralized platform.

About Workflows

Creating a New Workflow

The Workflow Editor

About Steps

Testing Workflows

Testing a Workflow

Monitor your workflows activity using tools in the Blink platform

Running Workflows

Workflows Runtime Limitations

Learn about the workflow triggers supported by Blink.

About Workflow Triggers

Learn how to select and modify workflow triggers in Blink.

Configuring Triggers

About Actions

Conditions are used to compare two values. The condition builder enables you to use condition statements in your Workflows.

Condition Builder

Builder Copilot is an innovative feature that helps users to create custom workflows from the ground up, using the advanced capabilities of generative AI to enhance and streamline workflows within the Workflow Editor.

About Builder Copilot

Transform the output of step that contains any `JSON data` using guidance from [Builder Copilot](/docs/builder-copilot/builder-copilot) or manually entering a `JQ command`. This feature uses build-time AI to generate JQ commands from your text prompts, allowing you to reshape data formats or focus on essential information.

Step Output Transformation

A connection is the way in which the Workflow's Steps interact with an external service provider in order to execute an Action. Each connection needs to be authenticated by the external system using authentication parameters required by the target system or via the user's account on that system. The connection contains all the user information needed to access the service.

About Connections

A connection can be created from the **Connections** page or from the [Workflow Editor](/docs/workflows/building-workflows/workflow-editor) page.

Creating a New Connection

Using a Connection

You can give permission for another workspace to use a connection you created, allowing all members of that particular workspace to use the connection.

Sharing a connection

With apps that are installed on-premises and are not accessible to the Blink Runner, you need to do one of the following to establish a connection:

Connecting to an On-Premises App

Using Files in Workflows

The Templates feature contains a wide variety of pre-made Workflows. Import a Workflow template and make small adjustments to suit your needs, instead of creating an Workflow from scratch.

About Templates

Instructions on how to use a Workflow template if the user has not signed up for the Blink Platform

Using Workflow Templates for Users Without a Blink Account

Premium users can access, import, and use all templates, free and Premium, in the Workflow Library

Using Workflow Templates as an Existing Blink User

Blink supports a streamlined **publish approval** process, designed to enable administrators in enforcing stricter control over workflow publish permissions.

About Approving and Publishing Workflows

Instructions on Draft and published Workflow

Controlling the Availability of a Published Workflow

When publishing a workflow you can set permissions to ask for permission from the workspace owner

Publish Approval as the Builder

Publish Approval as the Workspace Owner

About Error Handling

The Workflow `YAML` contains all the information about the Workflow. Its name, description, runner, etc. It also includes a list of the Workflow's Steps, and each step has a name, action, inputs, and a connection.

Workflow YAML

Action Error References

Run Workflow on Workflow Failure

To view a workflows' run logs, select the 'Run Logs' tab, and then choose the specific run log you wish to view.

Workflow Run Logs

Clicking on any workflow in a Pack takes you to the Workflow Overview page. This page displays general information about the Workflow, details of each Step, and details about past executions.

The Workflow Overview Page

Instructions on how to Copy or Move workflow Packs Between Workspaces

Copy or Move Workflows Between Workspaces

Monitor your Workflow activity using tools in the Blink platform.

Monitoring Workflows Health

Workflow Version History

About Workflow Packs

Description of all the different pack options.

Pack Options

A Workflow Pack is a collection of Workflows that it is used to logically sort your Workflows into collections according to their use cases.

Pack Management

A Workflow Pack is a collection of workflows that it is used to logically sort your workflows into collections according to their use-cases

Sharing Packs

Move or copy a workflow to a different pack within the same workspace or to a different workspace, making it easy to organize and manage your workflows.

Move or Copy Workflow Packs Between Workspaces

Instructions on how to Deploy a Pack to Workspace

Deploy Pack to Workspace(s)

In the Blink Platform section of the documentation, you can find all the necessary information related to the Blink Platform and its features.

About the Blink Platform

Manage and organize hyperautomation resources and teams with workspaces.

About Workspaces

Blink workspaces enable you to organize your company into smaller subdivisions based on your specific needs. Every team can have one or more workspaces. This enables team members to collaborate on projects and share Workflows and resources efficiently.

Creating a New Workspace

Managing Your Workspace

Additional workspaces can be created to fit your company's needs. Workspaces can be created for departments, teams, projects, and any other subdivision existing in your organization. The owner of the workspace controls the members and their roles.

Organizing Your Workspaces

Sharing resources allows members of a workspace to use resources created by others, but not to modify them. This allows team members to collaborate on projects easily and efficiently.

Sharing Workspace Resources

Workspace usage data is a core feature in Blink Ops that enables administrators and team leads to track and analyze their automation resource utilization. This feature provides real-time visibility into workflow execution metrics, helping teams optimize their automation processes and manage resources effectively.

Monitoring your Workspace Usage

Each company using Blink has a separate account, completely isolated from all other accounts. Groups are used to manage groups of users, for example work teams and departments

About User Accounts

This page provides an overview of the features and functionality available in your Blink Ops account settings, as well as Blink's security and legal policies.

Account Management

General Settings

Audit Logs

The Audit Log monitors user activity in the tenant

About Tables

Create Your First Table

Basic Table Operations

Using Tables in Workflows

Blink Tables allows for basic and advanced view changes, to allow filtering, sorting, ordering and browsing the table records.

Viewing Tables

Table Limitations

Learn abut the Dashboard Building Interface

Dashboard Building Interface

Learn about the Dashboard Consuming Interface

Dashboard Management

Export Dashboards

Using Dashboards from the Self Service Portal

Published dashboards will be presented in the Self Service Portal.

Consume Dashboards via Self-Service Portal

About Web Forms

Web Form Event-Based Trigger

New Web Form Action

Security Statement

PRIVACY POLICY

The Case Management feature allows you to effectively handle security incident investigations by providing detailed information and logs in one place on a single [dashboard](/docs/case-management/dashboard). This, in turn, allows for quicker responses to security incidents as soon as they are detected or identified.

About Case Management

Key Case Management Concepts

Case Management Dashboard

Case Management Limitations

About Automated Case Management Processes

Detailed Explanation of Alert Ingestion Workflows

Alert Ingestion Workflows

Detailed Explanation of IOC Enrichment Workflows

Enrichment Workflows

Detailed Explanation of Response Workflows

Response Workflows

Error Handling Workflow

Detailed Explanation of Recovery Workflows

Recovery Workflows

Detailed Explanation of Utilities Workflows

Utility Workflows

Settings

Case Management Permissions

 Blink is a security automation copilot that generates automated workflows to handle repetitive tasks and enforce security policies – simply by typing a prompt. With no-code, low-code, and full coding capabilities, you can automate any security or infrastructure workflow across your entire security stack. Blink has 7K+ pre-built workflows that are available to download from the Blink Library, so you can start automating best practices and common tasks right away. Integrate with popular tools to automate all things security – and beyond.

Introduction to Blink

Welcome to Blink Ops

Signing into Blink

Signing In

In the subsequent section of the documentation, you will find sample tutorials and detailed instructions on creating different types of Workflow offered by Blink Ops.

Case Management

Automated Case Management

Case Management Dashboard

Case Management Interface

Triggers & Actions

Case Management Settings

Subflow 3 - Enrich Observables

How It Works:

Example of Extracted Observables:

Case Management

Automated Case Management

Case Management Dashboard

Case Management Interface

Triggers & Actions

Case Management Settings

​How It Works:

​Example of Extracted Observables:

How It Works:

Example of Extracted Observables: