chore(deps): bump distributhor/workflow-webhook from 1 to 2

[dependabot]

Bumps distributhor/workflow-webhook from 1 to 2.

Release notes

Sourced from distributhor/workflow-webhook's releases.

v2.0.0

This is a major release, since some of the defaults that were previously applied have changed - the new defaults are more reasonable and secure. All v1 configurations options are still available, and the v1 tag will continue to exist in maintenance mode. To make use of the new features and defaults, use the v2 tag in your workflow config.

Two of the most important changes are:

• SSL certificates are now validated by default. For those who are not using verified SSL certs, and currently on v1 but wishes to use v2, should set verify_ssl: false (as per the README), otherwise your current workflow may fail.
• An additional log level has been added, which is something between verbose and silent. Those were the only two options available in v1 (and verbose may leak sensitive information in your logs). By default the logging in v2 will now give some basic output, and if you prefer verbose or silent instead, those options are still available.
• A unique requestID is set on each payload, which can be used to increase protection against replay attacks.

Thanks to @​johannes-huther for these contributions.

v1.1.1

Using a pre-built docker image hosted in GitHub container registry

v1.0.9

Bug fix: remove duplicate 'User-Agent' in header

v1.0.8

Support for sha256 header

v1.0.7

An additional configuration option, allowing curl to be run in silent mode

v1.0.5

Support an extended JSON webhook POST, which sends the complete GitHub even data, as found on GITHUB_EVENT_PATH

v1.0.4

• Support for webhook endpoints that expect urlencoded form data
• Correctly handle curl HTTP failures, by letting errors bubble up

v1.0.3

• Improved build time
• Allow unsigned SSL certificates
• Better curl usage
• Additional GitHub environment header

v1.0.2

First official Marketplace release

Commits

• 58116e2 Update docker image version in action.yml
• 7049d8c Added comment in action.yml
• b828fce Merge pull request #29 from distributhor/request-id-logging
• c1959e7 Log webhook request ID if not in silent mode
• 69ec4d5 Minor change of comment
• 6edfd7c Move docker image to github container registry
• 0753f96 Match docker tag version to action version
• 494ef6a Use tagged version of container
• ed3c492 Use pre-built docker image
• ac65609 Change request ID generation to uuidgen
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #46.