# amitte/webhook-signature-verifier

> Audit webhook handlers for missing or weak signature verification and propose hardened verification using constant-time comparison.

## Identity

- **Type:** skill
- **Version:** 0.1.0
- **Trust tier:** official
- **License:** CC-BY-4.0
- **Authors:** Amitte Maintainers
- **Repo / bundle:** amitte/showcase
- **Canonical URL:** https://amitte.com/s/amitte/webhook-signature-verifier

## Tags

- **Capabilities:** webhooks, hmac, signature-verification
- **Domains:** security, api

## Evaluation

- **Adversarial score:** 100/100
- **Content score:** 92/100

## Programmatic access

- Fetch JSON-RPC: `POST https://registry.amitte.com/rpc` with `{ "method": "fetch", "params": { "id": "amitte/webhook-signature-verifier" } }`
- Install via CLI: `amitte install amitte/webhook-signature-verifier`
- HTML page: https://amitte.com/s/amitte/webhook-signature-verifier

Last updated: 2026-06-27T00:30:30.843Z