Merge branch 'main' into dependabot/pip/flake8-gte-7.3.0-and-lt-8

WilliamBergamin · web-flow · commit f894a06ab374 · 2026-06-04T11:07:03.000-04:00
diff --git a/requirements/databases.txt b/requirements/databases.txt
@@ -2,4 +2,4 @@
 
 # PostgreSQL drivers
 psycopg2-binary>=2.9,<3
-asyncpg>=0.27,<1
+asyncpg>=0.31.0,<1
diff --git a/requirements/documentation.txt b/requirements/documentation.txt
@@ -1,2 +1,2 @@
-docutils==0.22.4
+docutils==0.23
 pdoc3==0.11.6
diff --git a/requirements/testing.txt b/requirements/testing.txt
@@ -12,7 +12,7 @@ cryptography<46; implementation_name == "pypy" and python_version == "3.10"
 #  used only under slack_sdk/*_store
 boto3<=2
 # For AWS tests
-moto>=4.0.13,<6
+moto>=4.2.14,<6
 # For AsyncSQLAlchemy tests
 greenlet<=4
 aiosqlite<=1
diff --git a/slack_sdk/signature/__init__.py b/slack_sdk/signature/__init__.py
@@ -29,6 +29,18 @@ def __init__(self, signing_secret: str, clock: Clock = Clock()):
         self.signing_secret = signing_secret
         self.clock = clock
 
+    @property
+    def signing_secret(self) -> str:
+        return self._signing_secret
+
+    @signing_secret.setter
+    def signing_secret(self, value: str) -> None:
+        if not isinstance(value, str):
+            raise ValueError("signing_secret must be a string")
+        if not value.strip():
+            raise ValueError("signing_secret must not be empty.")
+        self._signing_secret = value
+
     def is_valid_request(
         self,
         body: Union[str, bytes],
diff --git a/tests/signature/test_signature_verifier.py b/tests/signature/test_signature_verifier.py
@@ -97,3 +97,23 @@ def test_is_valid_none(self):
         self.assertFalse(verifier.is_valid(None, self.timestamp, None))
         self.assertFalse(verifier.is_valid(self.body, None, None))
         self.assertFalse(verifier.is_valid(None, None, None))
+
+    def test_invalid_signing_secret(self):
+        with self.assertRaises(ValueError):
+            SignatureVerifier("")
+        with self.assertRaises(ValueError):
+            SignatureVerifier("   ")
+        with self.assertRaises(ValueError):
+            SignatureVerifier(None)
+        with self.assertRaises(ValueError):
+            SignatureVerifier(123)
+        with self.assertRaises(ValueError):
+            SignatureVerifier(b"secret")
+
+    def test_invalid_signing_secret_reassignment(self):
+        verifier = SignatureVerifier(self.signing_secret)
+        with self.assertRaises(ValueError):
+            verifier.signing_secret = ""
+        with self.assertRaises(ValueError):
+            verifier.signing_secret = None
+        self.assertEqual(verifier.signing_secret, self.signing_secret)
diff --git a/tests/slack_sdk/signature/test_signature_verifier.py b/tests/slack_sdk/signature/test_signature_verifier.py
@@ -97,3 +97,23 @@ def test_is_valid_none(self):
         self.assertFalse(verifier.is_valid(None, self.timestamp, None))
         self.assertFalse(verifier.is_valid(self.body, None, None))
         self.assertFalse(verifier.is_valid(None, None, None))
+
+    def test_invalid_signing_secret(self):
+        with self.assertRaises(ValueError):
+            SignatureVerifier("")
+        with self.assertRaises(ValueError):
+            SignatureVerifier("   ")
+        with self.assertRaises(ValueError):
+            SignatureVerifier(None)
+        with self.assertRaises(ValueError):
+            SignatureVerifier(123)
+        with self.assertRaises(ValueError):
+            SignatureVerifier(b"secret")
+
+    def test_invalid_signing_secret_reassignment(self):
+        verifier = SignatureVerifier(self.signing_secret)
+        with self.assertRaises(ValueError):
+            verifier.signing_secret = ""
+        with self.assertRaises(ValueError):
+            verifier.signing_secret = None
+        self.assertEqual(verifier.signing_secret, self.signing_secret)

Original file line number	Diff line number	Diff line change
`@@ -1,2 +1,2 @@`
`1`		`-docutils==0.22.4`
	`1`	`+docutils==0.23`
`2`	`2`	`pdoc3==0.11.6`