JFrog Xray notifications are special in that only repositories that are being actively watched in Xray and have a policy setup will generate notification events. To learn more about how Xray policies and watch work,
If you already have policies and watches setup in Xray, you can create notifications in the Slack app.
Hit Create Notification.
Give the Notification a name, which policy it is coming from, which channel to send the notification to, and whether you would like the security violation to send you information by individual CVE or send a grouped notification by Component (Summary).
Example - by CVE:
Example - by Component: