Webhook alerts

Dhal can send security alerts to an external endpoint.

{
  "observability": {
    "webhooks": {
      "enabled": true,
      "urls": ["https://security.example.com/dhal"],
      "signing": {
        "enabled": true,
        "secretEnv": "DHAL_WEBHOOK_SECRET"
      }
    }
  }
}

Set the signing secret:

export DHAL_WEBHOOK_SECRET="replace-me"

Always sign production webhooks

Unsigned webhooks are easier to spoof. dhal doctor warns when webhooks are enabled without signing.

Privacy

Webhook payloads follow observability redaction settings.

{
  "observability": {
    "redaction": {
      "enabled": true,
      "ip": "mask",
      "identity": "hash"
    }
  }
}

Always sign production webhooks​

Privacy​

Always sign production webhooks

Privacy