dependabot: bump tibdex/github-app-token from 1.5.0 to 1.8.0 (#3147)

Bumps
[tibdex/github-app-token](https://github.com/tibdex/github-app-token)
from 1.5.0 to 1.8.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/tibdex/github-app-token/commit/b62528385c34dbc9f38e5f4225ac829252d1ea92"><code>b625283</code></a>
release v1.8.0</li>
<li><a
href="https://github.com/tibdex/github-app-token/commit/44d4a52dd8146ce3a0a0a41e84589c102cbd347a"><code>44d4a52</code></a>
Upgrade deps (<a
href="https://redirect.github.com/tibdex/github-app-token/issues/64">#64</a>)</li>
<li><a
href="https://github.com/tibdex/github-app-token/commit/c3ff703acf97e767dc70d7e513f7986a674597bc"><code>c3ff703</code></a>
bump actions/checkout version (<a
href="https://redirect.github.com/tibdex/github-app-token/issues/52">#52</a>)</li>
<li><a
href="https://github.com/tibdex/github-app-token/commit/da40f50387c080df631aba01ea5c6df3857145b7"><code>da40f50</code></a>
Upgrade deps and cleanup (<a
href="https://redirect.github.com/tibdex/github-app-token/issues/51">#51</a>)</li>
<li><a
href="https://github.com/tibdex/github-app-token/commit/fba8a6770b8a1e5eccd5781c408e9e38f0323a9e"><code>fba8a67</code></a>
Update to <code>@actions/core</code> 1.10.0 (<a
href="https://redirect.github.com/tibdex/github-app-token/issues/49">#49</a>)</li>
<li><a
href="https://github.com/tibdex/github-app-token/commit/22db6191fc188e2c761c2b964de87d245bb3f5c1"><code>22db619</code></a>
Add <code>github_api_url</code> input defaulting to
<code>env.GITHUB_API_URL</code> (<a
href="https://redirect.github.com/tibdex/github-app-token/issues/43">#43</a>)</li>
<li><a
href="https://github.com/tibdex/github-app-token/commit/8905248e83ded50c3fb6cafa03168b7b59b32d68"><code>8905248</code></a>
Use octokit REST API for creating installation access token (<a
href="https://redirect.github.com/tibdex/github-app-token/issues/47">#47</a>)</li>
<li><a
href="https://github.com/tibdex/github-app-token/commit/9edcc8a68551ae0d364f50c1d49f3f95762d1266"><code>9edcc8a</code></a>
Update README (<a
href="https://redirect.github.com/tibdex/github-app-token/issues/50">#50</a>)</li>
<li><a
href="https://github.com/tibdex/github-app-token/commit/f66c1c31c49c0a4d593a5820a9f1e231af3321ad"><code>f66c1c3</code></a>
Add permissions input (<a
href="https://redirect.github.com/tibdex/github-app-token/issues/40">#40</a>)</li>
<li><a
href="https://github.com/tibdex/github-app-token/commit/c95b1c441a4dacd6d24f231b9697a5f9a04c607e"><code>c95b1c4</code></a>
Update dependencies (<a
href="https://redirect.github.com/tibdex/github-app-token/issues/36">#36</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/tibdex/github-app-token/compare/v1.5.0...v1.8.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=tibdex/github-app-token&package-manager=github_actions&previous-version=1.5.0&new-version=1.8.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

.github/workflows/auto-release.yml

@@ -13,7 +13,7 @@ jobs:
     steps:
       - name: GitHub App token
         id: github_app_token
-        uses: tibdex/github-app-token@v1.5.0
+        uses: tibdex/github-app-token@v1.8.0
         with:
           app_id: ${{ secrets.APP_ID }}
           private_key: ${{ secrets.APP_PRIVATE_KEY }}

.github/workflows/backport.yml

@@ -16,7 +16,7 @@ jobs:
     steps:
       - name: GitHub App token
         id: github_app_token
-        uses: tibdex/github-app-token@v1.5.0
+        uses: tibdex/github-app-token@v1.8.0
         with:
           app_id: ${{ secrets.APP_ID }}
           private_key: ${{ secrets.APP_PRIVATE_KEY }}