Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump slack-bolt from 1.15.2 to 1.18.0 #348

Closed
wants to merge 1 commit into from
Closed

Bump slack-bolt from 1.15.2 to 1.18.0 #348

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Aug 14, 2023
edited

Bumps slack-bolt from 1.15.2 to 1.18.0.

Release notes

Sourced from slack-bolt's releases.

version 1.18.0

Changes

  • #891 Add url, team, user to AuthorizeResult properties (as optional ones) - Thanks @​seratch

References

version 1.17.2

Changes

  • #885 Improve the default handler when raise_error_for_unhandled_request is true - Thanks @​seratch

References

version 1.17.1

Changes

  • #882 Improve the default OAuth page renderers not to embed any params without escaping them - Thanks @​seratch
  • Upgrade the slack-sdk package version to the latest - Thanks @​seratch

References

version 1.17.0

New Features

Updates on AuthorizeResult properties

In v1.17, two new optional properties bot_scopes and user_scopes have been added to the AuthorizeResult / AsyncAuthorizeResult classes. These properties are used to associate specific scopes with bot_token and user_token, and the built-in InstallationStore automatically resolves them.

  • bot_scopes: the scopes associated with the bot_token; this can be absent when bot_token does not exist
  • user_scopes: the scopes associated with the user_token; this can be absent when user_token does not exist

These properties are optional, so all the existing Authorize / AsyncAuthorize sub classes are expected to continue functioning without any code changes.

Also, this version includes the fix for the existing bug where the user_id can be absent when both bot_token and user_token exist.

Please refer to slackapi/bolt-python#855 or the details of the changes.

New actor IDs in context

Starting in v1.17, context objects in middleware and listeners provide a few new properties -- actor_enterprise_id, actor_team_id, and actor_user_id--, in addition to existing enterprise_id, team_id, and user_id. You should be curious about the difference. The new "actor" IDs remain the same for interactivity events such as slash commands, global shortcuts, etc. The key difference can appear when your app handles Events API subscription requests such as "app_mention" and "message" events in Slack Connect channels and/or when your app is distributed, and it has multiple workspace installations.

... (truncated)

Commits
  • 515684e verison 1.18.0
  • 9970748 Disable Codecov job for now
  • a06fcb5 Add url, team, user to AuthorizeResult properties
  • fea0c99 Update codecov build settings
  • 076efb5 version 1.17.2
  • 7bf508f Improve the default handler when raise_error_for_unhandled_request is true (#...
  • f8c1b86 version 1.17.1
  • 7b4b082 Improve the default OAuth page renderers not to embed any params without esca...
  • eae0d4e Remove legacy tag (#875)
  • f52b7ff version 1.17.0
  • Additional commits viewable in compare view

Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot
Bump slack-bolt from 1.15.2 to 1.18.0
2345313 
Bumps [slack-bolt](https://github.com/slackapi/bolt-python) from 1.15.2 to 1.18.0.
- [Release notes](https://github.com/slackapi/bolt-python/releases)
- [Commits](slackapi/bolt-python@v1.15.2...v1.18.0)

---
updated-dependencies:
- dependency-name: slack-bolt
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Aug 14, 2023
@dependabot dependabot bot mentioned this pull request Aug 14, 2023
Closed
@rebkwok rebkwok closed this Jan 8, 2024
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Jan 8, 2024

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

@dependabot dependabot bot deleted the dependabot/pip/slack-bolt-1.18.0 branch January 8, 2024 17:12
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@github-actions github-actions[bot] github-actions approved these changes

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file python Pull requests that update Python code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
1 participant
@rebkwok