Jeden Skill in Manus ausführen
mit einem Klick

Jeden Skill in Manus mit einem Klick ausführen

woocommerce-webhooks

Sterne73

Forks8

Aktualisiert11. Mai 2026 um 12:14

Receive and verify WooCommerce webhooks. Use when setting up WooCommerce webhook handlers, debugging signature verification, or handling e-commerce events like order.created, order.updated, product.created, or customer.created.

Installation

Mit Codex oder Claude installieren Kopieren Sie diesen Prompt, fügen Sie ihn in Codex, Claude oder einen anderen Assistant ein und lassen Sie die Skill-Seite prüfen und installieren.

In Manus ausführen

Quelle

hookdeck

hookdeck/webhook-skills

GitHub-Repository öffnen Creator-Repositorys ansehen

Download

In Manus ausführen

Verwandte BerufeSOC

Basierend auf der SOC-Berufsklassifikation

SoftwareentwicklerInformatik- und Mathematikberufe·SOC 15-1252

Datei-Explorer

20 Dateien

SKILL.md

readonly

Mehr aus diesem Repository

gleiches Repository

webhook-dx-audit

hookdeck/webhook-skills

Audit the developer experience of any platform that sends outbound webhooks or event destinations to its customers, and produce a structured YAML audit file with scored findings and prioritized recommendations. Use whenever the task is to review, assess, grade, or critique a company's webhook/event- delivery DX: their signup and onboarding, signing and verification, retry and delivery semantics, event catalog and payloads, setup surfaces (UI/API/CLI/IaC/SDK), consumer-facing observability, local dev, and local-to-production transition. Trigger this for a 'webhook DX review', 'event destinations audit', or an 'outbound webhook assessment', even if the user names a specific company (e.g. 'review Acme's webhooks') rather than the word audit. The output is a YAML audit file conforming to `schema/audit.schema.yaml`; whoever consumes it downstream renders their own presentation.

2026-06-0573

knock-webhooks

hookdeck/webhook-skills

Receive and verify Knock outbound webhooks. Use when setting up Knock webhook handlers, debugging x-knock-signature verification, or handling notification events like message.sent, message.delivered, message.bounced, message.read, workflow.committed, or message.link_clicked.

2026-05-1573

scrapfly-webhooks

hookdeck/webhook-skills

Receive and verify Scrapfly webhooks. Use when setting up Scrapfly webhook handlers for async scrape, extraction, screenshot, or crawler jobs, debugging X-Scrapfly-Webhook-Signature verification, or routing on X-Scrapfly-Webhook-Resource-Type.

2026-05-1573

orb-webhooks

hookdeck/webhook-skills

Receive and verify Orb webhooks. Use when setting up Orb webhook handlers, debugging Orb signature verification, or handling usage-based billing events like invoice.issued, subscription.created, or customer.credit_balance_dropped.

2026-05-1473

twilio-webhooks

hookdeck/webhook-skills

Receive and verify Twilio webhooks. Use when setting up Twilio webhook handlers, debugging X-Twilio-Signature verification, or handling communications events like incoming SMS, voice calls, message status callbacks (delivered, failed), or recording status callbacks.

2026-05-1173

slack-webhooks

hookdeck/webhook-skills

Receive and verify Slack Events API webhooks. Use when setting up Slack webhook handlers, debugging Slack signature verification, handling the url_verification challenge, or processing events like app_mention, message, reaction_added, team_join, or app_home_opened.

2026-05-1173

name	woocommerce-webhooks
description	Receive and verify WooCommerce webhooks. Use when setting up WooCommerce webhook handlers, debugging signature verification, or handling e-commerce events like order.created, order.updated, product.created, or customer.created.
license	MIT
metadata	{"author":"hookdeck","version":"0.1.0","repository":"https://github.com/hookdeck/webhook-skills"}

WooCommerce Webhooks

When to Use This Skill

Setting up WooCommerce webhook handlers
Debugging signature verification failures
Understanding WooCommerce event types and payloads
Handling order, product, or customer events
Integrating with WooCommerce stores

Essential Code (USE THIS)

WooCommerce Signature Verification (JavaScript)

const crypto = require('crypto');

function verifyWooCommerceWebhook(rawBody, signature, secret) {
  if (!signature || !secret) return false;
  
  const hash = crypto
    .createHmac('sha256', secret)
    .update(rawBody)
    .digest('base64');
  
  try {
    return crypto.timingSafeEqual(
      Buffer.from(signature), 
      Buffer.from(hash)
    );
  } catch {
    return false;
  }
}

Express Webhook Handler

const express = require('express');
const app = express();

// CRITICAL: Use raw body for signature verification
app.use('/webhooks/woocommerce', express.raw({ type: 'application/json' }));

app.post('/webhooks/woocommerce', (req, res) => {
  const signature = req.headers['x-wc-webhook-signature'];
  const secret = process.env.WOOCOMMERCE_WEBHOOK_SECRET;
  
  if (!verifyWooCommerceWebhook(req.body, signature, secret)) {
    return res.status(400).send('Invalid signature');
  }
  
  const payload = JSON.parse(req.body);
  const topic = req.headers['x-wc-webhook-topic'];
  
  console.log(`Received ${topic} event:`, payload.id);
  res.status(200).send('OK');
});

Next.js API Route (App Router)

import crypto from 'crypto';
import { NextRequest } from 'next/server';

export async function POST(request: NextRequest) {
  const signature = request.headers.get('x-wc-webhook-signature');
  const secret = process.env.WOOCOMMERCE_WEBHOOK_SECRET;
  
  const rawBody = await request.text();
  
  if (!verifyWooCommerceWebhook(rawBody, signature, secret)) {
    return new Response('Invalid signature', { status: 400 });
  }
  
  const payload = JSON.parse(rawBody);
  const topic = request.headers.get('x-wc-webhook-topic');
  
  console.log(`Received ${topic} event:`, payload.id);
  return new Response('OK', { status: 200 });
}

FastAPI Handler

import hmac
import hashlib
import base64
from fastapi import FastAPI, Request, HTTPException

app = FastAPI()

def verify_woocommerce_webhook(raw_body: bytes, signature: str, secret: str) -> bool:
    if not signature or not secret:
        return False
    
    hash_digest = hmac.new(
        secret.encode(),
        raw_body,
        hashlib.sha256
    ).digest()
    expected_signature = base64.b64encode(hash_digest).decode()
    
    return hmac.compare_digest(signature, expected_signature)

@app.post('/webhooks/woocommerce')
async def handle_webhook(request: Request):
    raw_body = await request.body()
    signature = request.headers.get('x-wc-webhook-signature')
    secret = os.getenv('WOOCOMMERCE_WEBHOOK_SECRET')
    
    if not verify_woocommerce_webhook(raw_body, signature, secret):
        raise HTTPException(status_code=400, detail='Invalid signature')
    
    payload = await request.json()
    topic = request.headers.get('x-wc-webhook-topic')
    
    print(f"Received {topic} event: {payload.get('id')}")
    return {'status': 'success'}

Common Event Types

Event	Triggered When	Common Use Cases
`order.created`	New order placed	Send confirmation emails, update inventory
`order.updated`	Order status changed	Track fulfillment, send notifications
`order.deleted`	Order deleted	Clean up external systems
`product.created`	Product added	Sync to external catalogs
`product.updated`	Product modified	Update pricing, inventory
`customer.created`	New customer registered	Welcome emails, CRM sync
`customer.updated`	Customer info changed	Update profiles, preferences

Environment Variables

WOOCOMMERCE_WEBHOOK_SECRET=your_webhook_secret_key

Headers Reference

WooCommerce webhooks include these headers:

X-WC-Webhook-Signature - HMAC SHA256 signature (base64)
X-WC-Webhook-Topic - Event type (e.g., "order.created")
X-WC-Webhook-Resource - Resource type (e.g., "order")
X-WC-Webhook-Event - Action (e.g., "created")
X-WC-Webhook-Source - Store URL
X-WC-Webhook-ID - Webhook ID
X-WC-Webhook-Delivery-ID - Unique delivery ID

Local Development

For local webhook testing, install Hookdeck CLI:

Then start the tunnel:

npx hookdeck-cli listen 3000 woocommerce --path /webhooks/woocommerce

No account required. Provides local tunnel + web UI for inspecting requests.

Reference Materials

overview.md - What WooCommerce webhooks are, common event types
setup.md - Configure webhooks in WooCommerce admin, get signing secret
verification.md - Signature verification details and gotchas
examples/ - Complete runnable examples per framework

Recommended: webhook-handler-patterns

For production-ready webhook handlers, also install the webhook-handler-patterns skill for:

Related Skills

stripe-webhooks - Stripe payment webhooks with HMAC verification
shopify-webhooks - Shopify store webhooks with HMAC verification
github-webhooks - GitHub repository webhooks
paddle-webhooks - Paddle billing webhooks
webhook-handler-patterns - Idempotency, error handling, retry logic
hookdeck-event-gateway - Production webhook infrastructure