verified events to the small https endpoint that starts your job.
Verify GitHub on an endpoint
GitHub signs with a secret you set on the webhook; register the same secret here so events land as Point a GitHub webhook (e.g. on
verified.push) at the ingest URL.Register your job-runner as a destination
The destination is any https URL you control that starts the job — a serverless function, a small relay, an internal service. The allowlist blocks private-range targets at delivery time, so this must be publicly reachable.Verify that secret in the runner so only webhook.co can start a job.
A rejected signature (
failed) is blocked outright — no subscription setting forwards it. Only
verified / authenticated events are delivered and signed.