Skip to content

Security: document webhook hardening checklist #4

Open
Open
Security: document webhook hardening checklist#4
Labels
documentationImprovements or additions to documentationhelp wantedExtra attention is needed
@Zzhplayer

Description

@Zzhplayer
Zzhplayer
opened on May 31, 2026

Create a webhook deployment hardening checklist.

Cover:

  • requiring KAIROS_GITHUB_WEBHOOK_SECRET
  • avoiding full payload logs
  • validating event allowlists
  • loop prevention with GitHub App installation id
  • redacting Feishu ids and credentials in debugging output

This should link from README.md and SECURITY.md.

Metadata

Metadata

Assignees

No one assigned

    Labels

    documentationImprovements or additions to documentationhelp wantedExtra attention is needed

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions