The Agent Skills Directory

[SAFE]: The skill serves as a developer guide for implementing Chargebee webhook handlers. It includes clear instructions on how to verify incoming requests using Basic Authentication, ensuring that only authorized webhooks are processed.
[EXTERNAL_DOWNLOADS]: The documentation suggests installing the Hookdeck CLI via Homebrew (brew install hookdeck/hookdeck/hookdeck) for local development and testing. This is a legitimate utility provided by the skill's author to facilitate webhook debugging.
[CREDENTIALS_UNSAFE]: The examples demonstrate secure secret management by utilizing environment variables (e.g., CHARGEBEE_WEBHOOK_USERNAME, CHARGEBEE_WEBHOOK_PASSWORD) and providing .env.example files. No hardcoded credentials or sensitive data are included in the skill content.
[DATA_EXFILTRATION]: No suspicious network operations or data leakage patterns were identified. The logic for decoding and checking authentication headers is correctly implemented and used solely for request validation.

chargebee-webhooks