intercom-prod-checklist
Facilitates the execution of Intercom production readiness checklists and rollback procedures for seamless integration deployment.
Install this skill
Security score
The intercom-prod-checklist skill was audited on May 28, 2026 and we found 28 security issues across 3 threat categories. Review the findings below before installing.
Categories Tested
Security Issues
Template literal with variable interpolation in command context
| 105 | error: `${err.statusCode}: ${err.message}`, |
Template literal with variable interpolation in command context
| 131 | ```bash |
Curl to non-GitHub URL
| 153 | curl -s https://status.intercom.com/api/v2/status.json | jq -r '.status.indicator' |
Curl to non-GitHub URL
| 169 | curl -X PATCH https://your-config-service/flags/intercom_enabled \ |
Curl to non-GitHub URL
| 177 | curl -s https://your-app.com/health | jq '.services.intercom' |
Webhook reference - potential data exfiltration
| 29 | Complete checklist for deploying Intercom integrations to production, covering authentication, error handling, rate limits, webhooks, and monitoring. |
Webhook reference - potential data exfiltration
| 50 | ### Webhook Endpoints |
Webhook reference - potential data exfiltration
| 52 | - [ ] Webhook URL uses HTTPS (Intercom requires it) |
Webhook reference - potential data exfiltration
| 54 | - [ ] Webhook handler responds within 5 seconds (Intercom timeout) |
Webhook reference - potential data exfiltration
| 55 | - [ ] Idempotency: duplicate webhooks handled gracefully |
Webhook reference - potential data exfiltration
| 56 | - [ ] Failed webhook retry handled (Intercom retries once after 1 min) |
Webhook reference - potential data exfiltration
| 155 | # 4. Webhook endpoint reachable (if configured) |
Webhook reference - potential data exfiltration
| 156 | if [ -n "${WEBHOOK_URL:-}" ]; then |
Webhook reference - potential data exfiltration
| 157 | echo -n "Webhook endpoint: " |
Webhook reference - potential data exfiltration
| 158 | WH_STATUS=$(curl -s -o /dev/null -w "%{http_code}" "$WEBHOOK_URL") |
Webhook reference - potential data exfiltration
| 179 | # 4. Disable webhooks in Intercom Developer Hub |
Webhook reference - potential data exfiltration
| 180 | # (prevents queued webhook deliveries to unhealthy endpoint) |
Webhook reference - potential data exfiltration
| 191 | | Webhook failures | Delivery errors | P3 | Check endpoint health, verify signature | |
Webhook reference - potential data exfiltration
| 197 | - [Webhook Setup](https://developers.intercom.com/docs/webhooks/setting-up-webhooks) |
External URL reference
| 71 | - [ ] Intercom status page monitored (https://status.intercom.com) |
External URL reference
| 141 | https://api.intercom.io/me) |
External URL reference
| 148 | https://api.intercom.io/me 2>/dev/null | grep -i x-ratelimit-remaining | awk '{print $2}') |
External URL reference
| 153 | curl -s https://status.intercom.com/api/v2/status.json | jq -r '.status.indicator' |
External URL reference
| 169 | curl -X PATCH https://your-config-service/flags/intercom_enabled \ |
External URL reference
| 177 | curl -s https://your-app.com/health | jq '.services.intercom' |
External URL reference
| 195 | - [Intercom Status](https://status.intercom.com) |
External URL reference
| 196 | - [Rate Limiting](https://developers.intercom.com/docs/references/rest-api/errors/rate-limiting) |
External URL reference
| 197 | - [Webhook Setup](https://developers.intercom.com/docs/webhooks/setting-up-webhooks) |