Permissions:
For now App Tokens related permissions are not required at all (can be disabled entirely without affecting the app)
For now Oauth (Bot) Permissions can be removed:
channels:manage
groups:write
groups:read
Also, we can Restrict API Token Usage by providing only the IP Address from which it can be accessed (I think this can be very useful)
Permissions: For now App Tokens related permissions are not required at all (can be disabled entirely without affecting the app) For now Oauth (Bot) Permissions can be removed: channels:manage groups:write groups:read
Also, we can Restrict API Token Usage by providing only the IP Address from which it can be accessed (I think this can be very useful)