SWI-3723 [Snyk] Security upgrade @actions/github from 6.0.1 to 8.0.1

[bwappsec]

Snyk has created this PR to fix 5 vulnerabilities in the yarn dependencies of this project.

Snyk changed the following file(s):

• package.json
• yarn.lock

Note for zero-installs users

If you are using the Yarn feature zero-installs that was introduced in Yarn V2, note that this PR does not update the .yarn/cache/ directory meaning this code cannot be pulled and immediately developed on as one would expect for a zero-install project - you will need to run yarn to update the contents of the ./yarn/cache directory.
If you are not using zero-install you can ignore this as your flow should likely be unchanged.

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Improper Handling of Highly Compressed Data (Data Amplification) SNYK-JS-UNDICI-15518068	169
	Uncaught Exception SNYK-JS-UNDICI-15518070	169
	HTTP Request Smuggling SNYK-JS-UNDICI-15518061	118
	CRLF Injection SNYK-JS-UNDICI-15518072	61
	Allocation of Resources Without Limits or Throttling SNYK-JS-UNDICI-14943963	38

Breaking Change Risk

Notice: This assessment is enhanced by AI.

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Allocation of Resources Without Limits or Throttling
🦉 Uncaught Exception
🦉 CRLF Injection

[bwappsec]

This is a major version upgrade from v6 to v8 of @actions/github.

Breaking Changes:

• Node.js Version: The minimum required Node.js version has been increased to 20. The previous version supported Node.js 18. GitHub Actions workflows using an older Node.js version will need to be updated.
• Octokit Dependencies: Core @octokit dependencies have been updated to new major versions.

Recommendation:
Ensure your GitHub Actions runners are configured to use Node.js 20 or a later version. Verify that any custom scripts interacting with the Octokit API are compatible with the latest dependency versions.

Source: Package RELEASES.md.

Notice 🤖: This content was augmented using artificial intelligence. AI-generated content may contain errors and should be reviewed for accuracy before use.

[bwappsec]

✅ Snyk checks have passed. No issues have been found so far.

Status	Scan Engine	Critical	High	Medium	Low	Total (0)
✅	Open Source Security	0	0	0	0	0 issues
✅	Licenses	0	0	0	0	0 issues
✅	Code Security	0	0	0	0	0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.