MCPcopy Index your code
hub / github.com/adnanh/webhook

github.com/adnanh/webhook @2.8.3

repository ↗ · DeepWiki ↗ · release 2.8.3 ↗ · Ask this repo → · + Follow
159 symbols 394 edges 25 files 78 documented · 49% 6 cross-repo links updated 4mo ago2.8.3 · 2026-02-12★ 11,95393 open issues
README

What is webhook? ![build-status][badge]

Webhook

[webhook][w] is a lightweight configurable tool written in Go, that allows you to easily create HTTP endpoints (hooks) on your server, which you can use to execute configured commands. You can also pass data from the HTTP request (such as headers, payload or query variables) to your commands. [webhook][w] also allows you to specify rules which have to be satisfied in order for the hook to be triggered.

For example, if you're using Github or Bitbucket, you can use [webhook][w] to set up a hook that runs a redeploy script for your project on your staging server, whenever you push changes to the master branch of your project.

If you use Mattermost or Slack, you can set up an "Outgoing webhook integration" or "Slash command" to run various commands on your server, which can then report back directly to you or your channels using the "Incoming webhook integrations", or the appropriate response body.

[webhook][w] aims to do nothing more than it should do, and that is: 1. receive the request, 2. parse the headers, payload and query variables, 3. check if the specified rules for the hook are satisfied, 3. and finally, pass the specified arguments to the specified command via command line arguments or via environment variables.

Everything else is the responsibility of the command's author.

Not what you're looking for?

| hookdoo |

hookdeck

| | :-: | :-: | | Scriptable webhook gateway to safely run your custom builds, deploys, and proxy scripts on your servers. | An event gateway to reliably ingest, verify, queue, transform, filter, inspect, monitor, and replay webhooks. |

Getting started

Installation

Building from source

To get started, first make sure you've properly set up your Go 1.21 or newer environment and then run

$ go build github.com/adnanh/webhook

to build the latest version of the [webhook][w].

Using package manager

Snap store

Get it from the Snap Store

Ubuntu

If you are using Ubuntu linux (17.04 or later), you can install webhook using sudo apt-get install webhook which will install community packaged version.

Debian

If you are using Debian linux ("stretch" or later), you can install webhook using sudo apt-get install webhook which will install community packaged version (thanks @freeekanayaka) from https://packages.debian.org/sid/webhook

FreeBSD

If you are using FreeBSD, you can install webhook using pkg install webhook.

Download prebuilt binaries

Prebuilt binaries for different architectures are available at GitHub Releases.

Configuration

Next step is to define some hooks you want [webhook][w] to serve. [webhook][w] supports JSON or YAML configuration files, but we'll focus primarily on JSON in the following example. Begin by creating an empty file named hooks.json. This file will contain an array of hooks the [webhook][w] will serve. Check Hook definition page to see the detailed description of what properties a hook can contain, and how to use them.

Let's define a simple hook named redeploy-webhook that will run a redeploy script located in /var/scripts/redeploy.sh. Make sure that your bash script has #!/bin/sh shebang on top.

Our hooks.json file will now look like this:

[
  {
    "id": "redeploy-webhook",
    "execute-command": "/var/scripts/redeploy.sh",
    "command-working-directory": "/var/webhook"
  }
]

NOTE: If you prefer YAML, the equivalent hooks.yaml file would be:

- id: redeploy-webhook
  execute-command: "/var/scripts/redeploy.sh"
  command-working-directory: "/var/webhook"

You can now run [webhook][w] using

$ /path/to/webhook -hooks hooks.json -verbose

It will start up on default port 9000 and will provide you with one HTTP endpoint

http://yourserver:9000/hooks/redeploy-webhook

Check webhook parameters page to see how to override the ip, port and other settings such as hook hotreload, verbose output, etc, when starting the [webhook][w].

By performing a simple HTTP GET or POST request to that endpoint, your specified redeploy script would be executed. Neat!

However, hook defined like that could pose a security threat to your system, because anyone who knows your endpoint, can send a request and execute your command. To prevent that, you can use the "trigger-rule" property for your hook, to specify the exact circumstances under which the hook would be triggered. For example, you can use them to add a secret that you must supply as a parameter in order to successfully trigger the hook. Please check out the Hook rules page for detailed list of available rules and their usage.

Multipart Form Data

[webhook][w] provides limited support the parsing of multipart form data. Multipart form data can contain two types of parts: values and files. All form values are automatically added to the payload scope. Use the parse-parameters-as-json settings to parse a given value as JSON. All files are ignored unless they match one of the following criteria:

  1. The Content-Type header is application/json.
  2. The part is named in the parse-parameters-as-json setting.

In either case, the given file part will be parsed as JSON and added to the payload map.

Templates

[webhook][w] can parse the hooks configuration file as a Go template when given the -template CLI parameter. See the Templates page for more details on template usage.

Using HTTPS

[webhook][w] by default serves hooks using http. If you want [webhook][w] to serve secure content using https, you can use the -secure flag while starting [webhook][w]. Files containing a certificate and matching private key for the server must be provided using the -cert /path/to/cert.pem and -key /path/to/key.pem flags. If the certificate is signed by a certificate authority, the cert file should be the concatenation of the server's certificate followed by the CA's certificate.

TLS version and cipher suite selection flags are available from the command line. To list available cipher suites, use the -list-cipher-suites flag. The -tls-min-version flag can be used with -list-cipher-suites.

Running behind a reverse proxy

[webhook][w] may be run behind a "reverse proxy" - another web-facing server such as Apache httpd or Nginx that accepts requests from clients and forwards them on to [webhook][h]. You can have [webhook][w] listen on a regular TCP port or on a Unix domain socket (with the -socket flag), then configure your proxy to send requests for a specific host name or sub-path over that port or socket to [webhook][w].

Note that when running in this mode the ip-whitelist trigger rule will not work as expected, since it will be checking the address of the proxy, not the client. Client IP restrictions will need to be enforced within the proxy, before it decides whether to forward the request to [webhook][w].

CORS Headers

If you want to set CORS headers, you can use the -header name=value flag while starting [webhook][w] to set the appropriate CORS headers that will be returned with each response.

Running under systemd

On platforms that use systemd, [webhook][w] supports the socket activation mechanism. If [webhook][w] detects that it has been launched from a systemd-managed socket it will automatically use that instead of opening its own listening port. See the systemd page for full details.

Interested in running webhook inside of a Docker container?

You can use one of the following Docker images, or create your own (please read this discussion): - almir/webhook - roxedus/webhook - thecatlady/webhook - lwlook/webhook - This setup allows direct access to the Docker host, providing a streamlined and efficient way to manage webhooks.

Examples

Check out Hook examples page for more complex examples of hooks.

Guides featuring webhook

Community Contributions

See the [webhook-contrib][wc] repository for a collections of tools and helpers related to [webhook][w] that have been contributed by the [webhook][w] community.

Need help?

Check out existing issues to see if someone else also had the same problem, or open a new one.

Support active development

Sponsors

DigitalOcean

DigitalOcean is a simple and robust cloud computing platform, designed for developers.

BrowserStack

BrowserStack is a cloud-based cross-browser testing tool that enables developers to test their websites across various browsers on different operating systems and mobile devices, without requiring users to install virtual machines, devices or emulators.


Support this project by becoming a sponsor. Your logo will show up here with a link to your websi

Extension points exported contracts — how you extend this code

RequestIDOption (FuncType)
(no doc)
internal/middleware/request_id.go

Core symbols most depended-on inside this repo

Remove
called by 10
internal/pidfile/pidfile.go
Get
called by 9
internal/hook/hook.go
WriteHeader
called by 7
internal/middleware/dumper.go
Evaluate
called by 7
internal/hook/hook.go
Error
called by 6
internal/hook/hook.go
Match
called by 5
internal/hook/hook.go
Set
called by 4
internal/hook/hook.go
LoadFromFile
called by 4
internal/hook/hook.go

Shape

Function 93
Method 39
Struct 19
TypeAlias 7
FuncType 1

Languages

Go100%

Modules by API surface

internal/hook/hook.go56 symbols
internal/hook/hook_test.go19 symbols
webhook_test.go16 symbols
webhook.go14 symbols
internal/middleware/request_id.go9 symbols
internal/middleware/logger.go6 symbols
internal/hook/request.go6 symbols
internal/middleware/dumper.go5 symbols
internal/pidfile/pidfile.go4 symbols
tls.go3 symbols
internal/pidfile/mkdirall_windows.go3 symbols
signals.go2 symbols

Dependencies from manifests, versioned

github.com/Microsoft/go-winiov0.6.2 · 1×
github.com/clbanning/mxj/v2v2.7.0 · 1×
github.com/ghodss/yamlv1.0.0 · 1×
github.com/kr/prettyv0.1.0 · 1×
golang.org/x/sysv0.18.0 · 1×

For agents

$ claude mcp add webhook \
  -- python -m otcore.mcp_server <graph>

⬇ download graph artifact