Skip to content

Swatto/promtotwilio

BranchesTags

Repository files navigation

promtotwilio

License: MIT Go

Send Prometheus alerts as SMS via Twilio. Get notified on your phone when things go wrong.

Zero external dependencies — built entirely with Go's standard library for maximum reliability and minimal attack surface.

┌────────────┐     ┌──────────────┐     ┌──────────────┐     ┌────────┐     ┌───────┐
│ Prometheus │────▶│ AlertManager │────▶│ promtotwilio │────▶│ Twilio │────▶│  SMS  │
└────────────┘     └──────────────┘     └──────────────┘     └────────┘     └───────┘

Quick Start

# 1. Pull the image
docker pull ghcr.io/swatto/promtotwilio:latest

# 2. Run with your Twilio credentials
docker run -d \
  -e SID=your_twilio_sid \
  -e TOKEN=your_twilio_token \
  -e SENDER=+15551234567 \
  -e RECEIVER=+15559876543 \
  -p 9090:9090 \
  ghcr.io/swatto/promtotwilio:latest

# 3. Test it
curl -X POST http://localhost:9090/send \
  -H "Content-Type: application/json" \
  -d '{"version":"2","status":"firing","alerts":[{"annotations":{"summary":"Test alert"}}]}'

That's it. Point your AlertManager webhook at http://promtotwilio:9090/send.

Table of Contents

Configuration

Variable Required Default Description
SID Twilio Account SID
TOKEN ✅* Twilio Auth Token
API_KEY Twilio API Key SID (recommended for production)
API_KEY_SECRET Twilio API Key Secret (required if API_KEY is set)
SENDER Twilio phone number (e.g., +15551234567)
RECEIVER Default receiver(s), comma-separated
PORT 9090 HTTP server port
SEND_RESOLVED false Send notifications when alerts resolve
MAX_MESSAGE_LENGTH 150 Truncate messages beyond this length
MESSAGE_PREFIX Prefix for all messages (e.g., [PROD])
RATE_LIMIT 0 (off) Max requests per minute on /send
LOG_FORMAT simple Access log format: simple or nginx
WEBHOOK_SECRET If set, POST /send requires Authorization: Bearer <value>
DRY_RUN false If true, log messages instead of sending SMS

* TOKEN is required unless API_KEY and API_KEY_SECRET are provided.

Log Formats

LOG_FORMAT=simple (default) — structured slog output:

2026/02/18 11:34:13 INFO http request method=GET path=/ status=200 bytes=4 duration=11.459µs
2026/02/18 11:34:13 INFO http request method=GET path=/health status=200 bytes=48 duration=128.375µs
2026/02/18 11:34:13 INFO http request method=POST path=/send status=200 bytes=51 duration=135µs
2026/02/18 11:34:13 INFO http request method=POST path=/send status=429 bytes=20 duration=12.583µs

LOG_FORMAT=nginx — nginx combined log format:

127.0.0.1:50145 - - [18/Feb/2026:11:34:13 +0100] "GET / HTTP/1.1" 200 4 "-" "Go-http-client/1.1" "-"
127.0.0.1:50146 - - [18/Feb/2026:11:34:13 +0100] "GET /health HTTP/1.1" 200 48 "-" "Go-http-client/1.1" "-"
127.0.0.1:50147 - - [18/Feb/2026:11:34:13 +0100] "POST /send HTTP/1.1" 200 51 "-" "Go-http-client/1.1" "-"
127.0.0.1:50148 - - [18/Feb/2026:11:34:13 +0100] "POST /send HTTP/1.1" 429 20 "-" "Go-http-client/1.1" "-"

Authentication Methods

promtotwilio supports two authentication methods for the Twilio API:

Option 1: Account SID + Auth Token (simpler, for development)

export SID=ACxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
export TOKEN=your_auth_token
export SENDER=+15551234567

Option 2: API Key (recommended for production)

export SID=ACxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
export API_KEY=SKxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
export API_KEY_SECRET=your_api_key_secret
export SENDER=+15551234567

API Keys are recommended for production because:

  • Compromised keys can be revoked individually without affecting other integrations
  • Keys can have restricted permissions
  • Your account-level Auth Token remains protected

Create API Keys in the Twilio Console.

Multiple Receivers

export RECEIVER="+1234567890,+0987654321,+1122334455"

API

GET /

Health ping. Returns 200 OK.

GET /health

Returns JSON with status, version, and uptime.

GET /metrics

Returns Prometheus text exposition format with counters: promtotwilio_alerts_processed_total, promtotwilio_sms_sent_total, promtotwilio_sms_failed_total.

POST /send

Receives Prometheus/AlertManager webhook payloads and sends SMS.

Authentication: If WEBHOOK_SECRET is set, requests must include Authorization: Bearer <WEBHOOK_SECRET>.

Query Parameters:

  • receiver — Override default receiver(s). Comma-separated, URL-encoded.

Example:

curl -X POST "http://localhost:9090/send?receiver=%2B1234567890" \
  -H "Content-Type: application/json" \
  -d '{"version":"2","status":"firing","alerts":[{"annotations":{"summary":"Server down"}}]}'

Response:

{
  "success": true,
  "sent": 1,
  "failed": 0,
  "errors": []
}

Returns 401 Unauthorized if WEBHOOK_SECRET is set and the Authorization header is missing or invalid. Returns 429 Too Many Requests if RATE_LIMIT is configured and the limit is exceeded.

AlertManager Setup

Minimal Config

route:
  receiver: 'sms'

receivers:
  - name: 'sms'
    webhook_configs:
      - url: 'http://promtotwilio:9090/send'

Docker Compose

services:
  promtotwilio:
    image: ghcr.io/swatto/promtotwilio:latest
    environment:
      SID: ${TWILIO_SID}
      # Option 1: Auth Token
      TOKEN: ${TWILIO_TOKEN}
      # Option 2: API Key (recommended for production)
      # API_KEY: ${TWILIO_API_KEY}
      # API_KEY_SECRET: ${TWILIO_API_KEY_SECRET}
      SENDER: ${TWILIO_SENDER}
      RECEIVER: ${ALERT_RECEIVERS}
      SEND_RESOLVED: "true"
    ports:
      - "9090:9090"

  alertmanager:
    image: prom/alertmanager:latest
    volumes:
      - ./alertmanager.yml:/etc/alertmanager/config.yml
    depends_on:
      - promtotwilio

Prometheus Alert Rule Example

groups:
  - name: example
    rules:
      - alert: NodeDown
        expr: up == 0
        for: 1m
        labels:
          severity: critical
        annotations:
          summary: '{{ $labels.instance }} is down'

Note: Alerts require either a summary or description annotation.

Message Format

Firing:

[MESSAGE_PREFIX] [AlertName] "Summary" alert starts at <timestamp>

Resolved (when SEND_RESOLVED=true):

[MESSAGE_PREFIX] RESOLVED: [AlertName] "Summary" alert starts at <timestamp>

Examples:

Config Message
Default [NodeDown] "Server is down" alert starts at Mon, 15 Jan 2024 10:30:00 UTC
With MESSAGE_PREFIX=[PROD] [PROD] [NodeDown] "Server is down" alert starts at Mon, 15 Jan 2024 10:30:00 UTC
Resolved [PROD] RESOLVED: [NodeDown] "Back online" alert starts at Mon, 15 Jan 2024 10:30:00 UTC

Development

Zero Dependencies

This project uses only Go's standard library — no external dependencies. This means:

  • Minimal attack surface — no third-party supply chain risks
  • Fast builds — no dependency downloads required
  • Maximum reliability — only battle-tested stdlib code
  • Tiny binary — ~5MB statically compiled

Prerequisites

  • Go 1.26+
  • Docker (optional)

Commands

make build      # Build binary
make test       # Run tests
make coverage   # Tests with coverage
make lint       # Run linter
make check      # All checks
make e2e        # Run E2E tests (requires Docker)
make dev        # Run locally

Run Locally

export SID=your_twilio_sid
export TOKEN=your_twilio_token
export SENDER=+1234567890

make dev

Docker Images

docker pull ghcr.io/swatto/promtotwilio:latest
docker pull ghcr.io/swatto/promtotwilio:1.0.0   # Specific version
docker pull ghcr.io/swatto/promtotwilio:1.0     # Latest patch
docker pull ghcr.io/swatto/promtotwilio:1       # Latest minor

Contributing

See CONTRIBUTING.md for development guidelines and release process.

License

MIT

About

Send text messages for Prometheus alerts using Twilio

Topics

alert twilio prometheus alertmanager prometheus-alert

Resources

Readme

License

MIT license

Contributing

Contributing
Activity

Stars

34 stars

Watchers

2 watching

Forks

18 forks
Report repository

Releases 12

Release v1.10.1 Latest
Feb 18, 2026
+ 11 releases

Contributors

Languages