Why is idempotency handling included in this skill?

Webhooks may sometimes be delivered more than once due to network retries. Using the provided Redis pattern ensures that your application only processes each unique event ID once.

Where do I obtain the REPLIT_WEBHOOK_SECRET?

The webhook secret is generated and displayed in your Replit dashboard when you configure a new webhook endpoint for your organization or resource.

Can I use this with frameworks other than Express.js?

Yes. While the boilerplate uses Express.js, the core logic for signature verification and event processing can be adapted to any Node.js framework like Fastify, NestJS, or Koa.

How does this skill protect against replay attacks?

The skill validates the 'x-replit-timestamp' header against the server's current time and rejects any payloads older than five minutes to prevent unauthorized reuse of captured packets.

Replit Webhooks & Events

Name: Replit Webhooks & Events
Author: jeremylongshore

byjeremylongshore

•

982

API 개발

Implements secure Replit webhook endpoints with automated signature validation, replay protection, and robust event handling logic.

소개

This skill streamlines the process of integrating Replit events into your applications by providing standardized patterns for webhook security and processing. It automates the implementation of cryptographic signature verification (HMAC SHA-256), protects against replay attacks using timestamp validation, and offers a scalable event-handler architecture. Whether you are building automation for resource lifecycle changes or syncing Replit data with external systems, this skill ensures your backend integration is secure, idempotent, and production-ready.

주요 기능

Express.js boilerplate for rapid webhook endpoint setup
Standardized event handler patterns for resource lifecycle events
982 GitHub stars
Cryptographic signature validation using HMAC SHA-256
Optional Redis-based idempotency handling to prevent duplicate processing
Built-in replay attack protection via timestamp verification

사용 사례

Syncing real-time Replit event data with external databases or monitoring tools
Building secure custom CI/CD pipelines based on Replit developer activity
Automating workflows triggered by Replit project or resource updates

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add jeremylongshore/claude-code-plugins-plus-skills replit-webhooks-events

For use in Claude.ai and ChatGPT

Download Skill

GitHub

소개