Ch1nfo

Ch1nfo / SentinelFlow

Public

AI-Native SOC automation platform. Multi-agent orchestration (LangGraph Supervisor + Worker SubGraphs), pluggable Skill system, and a React WebUI for alert triage and human-in-the-loop command execution.

10
0
100% credibility
Found Apr 07, 2026 at 10 stars -- GitGems finds repos before they trend. Get early access to the next one.
Sign Up Free
AI Analysis
Python
AI Summary

SentinelFlow is a full-stack web platform that automates security operations center alert triage and response using AI agents, customizable skills, and workflows.

How It Works

1
🔍 Discover SentinelFlow

You hear about this helpful tool that automates security alert handling with smart AI helpers.

2
🚀 Launch your dashboard

Open the web app on your computer to see your security overview at a glance.

3
🧠 Connect the AI brain

Link a smart thinking service so agents can reason and decide on alerts.

4
📡 Set up alert watching

Tell it where to watch for new security alerts coming in.

5
🤖 Add your first helpers

Create simple skills or agents that know how to check IPs or close tickets automatically.

6
Handle an alert
💬
Chat naturally

Type what to do like 'check this IP and close if safe'.

🔄
Run workflow

Pick a step-by-step plan for common tasks like phishing checks.

7
Review and close

See the reasoning, evidence, and results then approve the fix.

🎉 Alerts flow smoothly

Your security team saves hours as AI handles routine checks and escalates only what matters.

Sign up to see the full architecture

6 more

Sign Up Free

Star Growth

See how this repo grew from 10 to 10 stars Sign Up Free
Repurpose This Repo

Repurpose is a Pro feature

Generate ready-to-use prompts for X threads, LinkedIn posts, blog posts, YouTube scripts, and more -- with full repo context baked in.

Unlock Repurpose
AI-Generated Review

What is SentinelFlow?

SentinelFlow is an AI-native SOC automation platform in Python that ingests security alerts, triages them with multi-agent reasoning, and executes responses through pluggable skills. It solves the alert overload in modern SOCs—where rules-based tools falter on novel threats—by routing JSON payloads or chat commands to a supervisor agent that delegates to workers, all viewable in a React web UI for triage and human-in-the-loop approval. Developers get a full-stack setup with one dev command spinning up FastAPI backend and Vite frontend.

Why is it gaining traction?

Its pluggable skills stand out: drop a markdown doc or Python script into a folder, and agents auto-discover and invoke them with per-agent permissions, no code restarts needed. The LangGraph-powered orchestration handles free-form ReAct or fixed workflows seamlessly, plus dual alert/chat entry points beat rigid SOAR playbooks. Early adopters hook on the unified CLI for backend/UI dev and production builds.

Who should use this?

SOC analysts building AI-native SOCs for digital native organizations, tired of manual triage on SIEM floods. Security engineers prototyping alert automation or command execution pipelines. Teams needing a React dashboard for human oversight on AI-driven investigations like IP enrichment or ticket closure.

Verdict

Try it for POC if you're experimenting with AI-native SOC analyst tools—solid docs and quickstart make it accessible despite 10 stars and 1.0% credibility score signaling early maturity. Lacks battle-tested scale, but the skill system and web UI deliver immediate value for small teams.

(198 words)

Sign up to read the full AI review Sign Up Free

Similar repos coming soon.