Skip to main content

glean-webhooks-events

Facilitates event-driven indexing for Glean using webhooks from platforms like GitHub and Notion, enhancing data integration.

Install this skill

or
58/100

Security score

The glean-webhooks-events skill was audited on May 17, 2026 and we found 18 security issues across 3 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

low line 29

Fetch to external URL

SourceSKILL.md
29const response = await fetch("https://yourapp.com/admin/webhooks", {
medium line 2

Webhook reference - potential data exfiltration

SourceSKILL.md
2name: glean-webhooks-events
medium line 3

Webhook reference - potential data exfiltration

SourceSKILL.md
3description: 'Implement event-driven Glean indexing triggered by source system webhooks
medium line 8

Webhook reference - potential data exfiltration

SourceSKILL.md
8Trigger: "glean webhooks", "glean event indexing", "incremental glean index".
medium line 21

Webhook reference - potential data exfiltration

SourceSKILL.md
21# Glean Webhooks & Events
medium line 24

Webhook reference - potential data exfiltration

SourceSKILL.md
24Glean uses an event-driven indexing model where source system webhooks trigger incremental updates to the Glean Indexing API. Instead of emitting its own webhooks, Glean receives document changes from
medium line 26

Webhook reference - potential data exfiltration

SourceSKILL.md
26## Webhook Registration
low line 28

Webhook reference - potential data exfiltration

SourceSKILL.md
28// Register a source system webhook that pushes to Glean Indexing API
low line 29

Webhook reference - potential data exfiltration

SourceSKILL.md
29const response = await fetch("https://yourapp.com/admin/webhooks", {
low line 33

Webhook reference - potential data exfiltration

SourceSKILL.md
33url: "https://yourapp.com/webhooks/glean-indexer",
low line 35

Webhook reference - potential data exfiltration

SourceSKILL.md
35secret: process.env.GLEAN_WEBHOOK_SECRET,
low line 47

Webhook reference - potential data exfiltration

SourceSKILL.md
47const expected = crypto.createHmac("sha256", process.env.GLEAN_WEBHOOK_SECRET!)
low line 61

Webhook reference - potential data exfiltration

SourceSKILL.md
61app.post("/webhooks/glean-indexer", express.raw({ type: "application/json" }), verifyGleanSignature, (req, res) => {
low line 35

Access to .env file

SourceSKILL.md
35secret: process.env.GLEAN_WEBHOOK_SECRET,
low line 47

Access to .env file

SourceSKILL.md
47const expected = crypto.createHmac("sha256", process.env.GLEAN_WEBHOOK_SECRET!)
low line 29

External URL reference

SourceSKILL.md
29const response = await fetch("https://yourapp.com/admin/webhooks", {
low line 33

External URL reference

SourceSKILL.md
33url: "https://yourapp.com/webhooks/glean-indexer",
low line 111

External URL reference

SourceSKILL.md
111- [Glean Indexing API](https://developers.glean.com/api/indexing-api/index-documents)
Scanned on May 17, 2026
View Security Dashboard
Installation guide →
GitHub Stars 2.2K
Rate this skill
Categorydevelopment
UpdatedMay 20, 2026
claude-codeapibackenddata-engineerbackend-developerproduct-managergithubconfluencenotiondevelopmentproduct
jeremylongshore/claude-code-plugins-plus-skills