Webhooks need optional security header

Webhook security header

We need to be able to better secure webhooks. I suggest to add an optional security header: If set, it must be present, or a 401 Unauthorized will be returned.

(building this every time via branching would be very cumbersome)

100% agree! I’ve asked about this before, albeit in a different context. Hopefully the team obliges!