We need to be able to better secure webhooks. I suggest to add an optional security header: If set, it must be present, or a 401 Unauthorized will be returned.
(building this every time via branching would be very cumbersome)
100% agree! I’ve asked about this before, albeit in a different context. Hopefully the team obliges!