II.
SkillArea overview
Reference · liveskill-area:webhook-verification
Webhook Verification overview
Verifying inbound webhook authenticity: HMAC-SHA256 signature schemes, timestamp / replay-protection windows, constant-time comparison, raw-body capture before JSON parsing, and provider-specific quirks (Stripe, GitHub, Slack).
Attributes
displayName
Webhook Verification
description
Verifying inbound webhook authenticity: HMAC-SHA256 signature schemes,
timestamp / replay-protection windows, constant-time comparison,
raw-body capture before JSON parsing, and provider-specific quirks
(Stripe, GitHub, Slack).
domains
expertiseLevels
- intermediate
- expert
Outgoing edges
applies_to1
- topic:webhook-verification·TopicWebhook Verification
Incoming edges
lib_requires_skill_area1
- lib-skill:backend-development--webhook-verification·LibrarySkillwebhook-verification
prerequisite_for_learning2
- skill-area:webhook-reliability·SkillAreaWebhook Reliability
- skill-area:backend-api-design·SkillAreaBackend API Design
requires_skill_area9
- stack-profile:webhook-processing·StackProfileWebhook Processing (Node.js, BullMQ, Redis, PostgreSQL, Docker, TypeScript)
- stack-profile:slack-discord-bot·StackProfileSlack / Discord Bot (TypeScript, Express, Redis, PostgreSQL, Docker)
- stack-profile:webhook-relay-proxy·StackProfileWebhook Relay / Proxy (Go, Redis, PostgreSQL, Prometheus, Docker)
- workflow:api-versioning-deprecation·WorkflowAPI Versioning and Deprecation
- workflow:plugin-marketplace-review·WorkflowPlugin Marketplace Review
- workflow:penetration-test-cycle·WorkflowPenetration Test Cycle
- workflow:security-review·WorkflowSecurity Review
- workflow:csp-header-audit·WorkflowCSP Header Audit
- workflow:security-review·WorkflowSecurity Review