Webhook Security Enhancements
This cluster focuses on improving security measures for webhook secret handling across various messaging platforms.
| # | Title | Author | Created | GitHub |
|---|---|---|---|---|
| 8067 | fix(telegram): use timing-safe comparison for webhook secret | yubrew | 2026-02-03 | View |
| 13521 | telegram: require webhook secret in runtime webhook mode | davidahmann | 2026-02-10 | View |
| 16619 | fix(line): allow signatureless empty-events webhook verification | harshang03 | 2026-02-14 | View |
| 16898 | Fix Zalo webhook secret comparison vulnerable to timing attacks | Clawborn | 2026-02-15 | View |
| 17182 | security(line): fail closed when webhook token/secret are missing rep | davidahmann | 2026-02-15 | View |
| 17593 | security: fail closed when LINE webhook secret is missing | davidahmann | 2026-02-15 | View |
| 18777 | fix: LINE webhook acknowledges events before processing and drops failur | coygeek | 2026-02-17 | View |