[Snyk] Security upgrade @octokit/webhooks from 3.1.0 to 9.26.3

[scottie]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	696/1000 Why? Recently disclosed, Has a fix available, CVSS 8.2	Improper Handling of Exceptional Conditions SNYK-JS-OCTOKITWEBHOOKS-6129527	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: @octokit/webhooks

The new version differs by 250 commits.

• a674dd6 fix: try to release with previously used semantic-release version
• 4c05d99 ci(release): run with `--debug`
• 8739f93 ci(release): add another debug step
• eb52781 build(pkg): fix repository field to address npm warning, and add another debug output in release workflow
• cce5722 fix: trigger another release
• a338537 updates token env name
• a608374 bumps node version for the release workflow
• 2750d5c updates semantic-release to be able to use the new env var format for npm
• a988453 Update package.json
• 6a9749e Update release.yml
• 0504ad8 fix: handles verify error (#917)
• c9b66b1 feat(types): webhooks updates via [`@ octokit/webhooks` v5.8.0](https://snyk.io/redirect/github/octokit/webhooks/releases/tag/v5.8.0) (#680)
• 464acb2 build(deps): bump semver-regex from 3.1.3 to 3.1.4 (#678)
• c8c6a38 feat(types): new `projects_v2_item` event (#679)
• 637603b feat(types): webhooks types updates via [`@ octokit/webhooks` v5.6.0](https://snyk.io/redirect/github/octokit/webhooks/releases/tag/v5.6.0) (#677)
• dba2418 build(deps): bump follow-redirects from 1.14.4 to 1.14.9 (#675)
• 315f569 build(deps): bump minimist from 1.2.5 to 1.2.6 (#676)
• f147fa3 feat(types): new `repository_vulnerability_alert.reopen` event, remove `workflow_job.started` event, and many other type updates for events via `@ octokit/webhooks-types` to [v5.5.1](https://snyk.io/redirect/github/octokit/webhooks/releases/tag/v5.5.1) (#674)
• 7553e76 build(deps): bump node-fetch to 2.6.7 (#668)
• ebf8f49 feat(types): updates to `deployment` and `deployment_status` events, new `deployment` property for `check_run` event (#662)
• 264e8c0 build(deps): bump `@ octokit/webhooks-types` & `@ octokit/webhooks-examples` (#661)
• 9fdd549 feat(types): new `changes.base` property on `pull_request#edited`, new `merged_at` property on issues common schema, new `rerequestable` property on `check_suite#completed`, new `log_url` property on `deployment#created`, remove `content_reference` event (#660)
• 768ce13 feat(types): new `pull_request_review_thread` event (#659)
• d185662 feat: update `@ octokit/webhooks-types` to [v4.16](https://snyk.io/redirect/github/octokit/webhooks/releases/tag/v4.16.0) (#658)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.