Require pyjwt>=2.4.0 to avoid CVE-2022-29217

[hugovk]

Fixes #2260.

Avoid CVE-2022-29217 by requiring pyjwt>=2.4.0.

PyGithub requires pyjwt>=2.0, so there's nothing to stop end users updating, and if they do a fresh install they'll get a newer version.

But it's a good idea to require at least the fixed 2.4.0 as a minimum version too.

[codecov-commenter]

Codecov Report

Base: 98.81% // Head: 98.88% // Increases project coverage by +0.07% 🎉

Coverage data is based on head (2e5af00) compared to base (437ff84).
Patch has no changes to coverable lines.

❗ Current head 2e5af00 differs from pull request most recent head 3dd3921. Consider uploading reports for the commit 3dd3921 to get more accurate results

Additional details and impacted files

@@            Coverage Diff             @@
##           master    #2333      +/-   ##
==========================================
+ Coverage   98.81%   98.88%   +0.07%     
==========================================
  Files         109      108       -1     
  Lines       11267    11172      -95     
==========================================
- Hits        11133    11047      -86     
+ Misses        134      125       -9     

Impacted Files	Coverage Δ
github/Repository.py	97.14% <0.00%> (-0.02%)	⬇️
github/WorkflowRun.py	100.00% <0.00%> (ø)
github/Artifact.py

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

☔ View full report at Codecov.
📢 Do you have feedback about the report comment? Let us know in this issue.