GitHub app in Slack – Issue create and manage experience

We are excited to share with you that we have added a bunch of new capabilities to our GitHub app in Slack. You can now create, track and manage your GitHub issues directly from Slack.

Create issues as you collaborate

You can now create issues with just a click, right from the place where you interact with your team i.e. from your channel, personal app, group or direct chat.
image

  • The content of the chat is automatically added into the description along with the link to the slack conversation.
  • The last used repo in the channel will be automatically filled in. However, you can go ahead and change to the repo if needed.
  • You can optionally fill in labels, assignees and milestones when you create an issue.

Once the issue is created you will receive a confirmation card in the channel/chat where you created the issue.

Issue card updates and threading

You can also update the issue directly from slack. When you see an issue notification card in Slack, you will now be able to comment, edit and close/reopen.
image

As part of this enhancement, we have also introduced threading functionality. Notifications for any issue are grouped under a parent card as replies. Threading gives context, reduces noise in the channel and helps improve collaboration.

For more information about these enhancements, please visit the GitHub app guidance for Slack.

GitHub Actions:OpenID Connect support enhanced to enable secure cloud deployments at scale

OpenID Connect (OIDC) support in GitHub Actions enables secure cloud deployments using short-lived tokens that are automatically rotated for each deployment.

You can now use the enhanced OIDC support to configure the subject claim format within the OIDC tokens, by defining a customization template at either org or repo levels. Once the configuration is completed, the new OIDC tokens generated during each deployment will follow the custom format.

This enables organization & repository admins to standardize OIDC configuration across their cloud deployment workflows that suits their compliance & security needs.

Learn more about Security hardening your GitHub Workflows using OpenID Connect.

See more

Dependabot alerts organizational-level REST API

You can now retrieve all your Dependabot alerts at the GitHub organization level via the REST API. This new API endpoint supplements the recently introduced Dependabot alerts REST API and Dependabot alerts webhook.

This API is available on GitHub.com starting today and will also be available to GitHub Enterprise Server (GHES) users starting with version 3.8.

For more information, see Dependabot alerts in the REST API reference or learn more about Dependabot alerts in our documentation.

See more
View all changes