fix(inbound): exempt webhooks from CSRF protection

shiftregister/messaging/views.py

@@ -10,11 +10,13 @@ from django.http import (
     HttpResponseNotFound,
     HttpResponseServerError,
 )
+from django.views.decorators.csrf import csrf_exempt
 
 from .inbound import receiver
 from .signals import incoming_message
 
 
+@csrf_exempt
 def handle_inbound(request):
     if receiver.handle is None:
         return HttpResponseNotFound()