HackerOne

Note: Webhooks are only available for Professional and Enterprise programs.

Webhooks enable you to build your own real-time integrations that subscribe to certain report and program events on HackerOne. When an event is triggered, HackerOne will send an HTTP POST payload to the webhook’s configured URL. <a href="https://api.hackerone.com/webhooks/#webhooks" rel="nofollow noopener noreferrer" target="_blank">View the API documentation for webhooks</a>.

Some examples of what webhooks can be used for include:

Triggering provisioning for a user account when a hacker joins your private program

- Updating an external issue tracker
- Triggering a notification system
- Updating a report’s data backup
- Triggering provisioning for a user account when a hacker joins your private program

They can be created on a program level and are bound to the permissions of the user that creates the webhook.

To access webhooks, go to Engagements, click the kebab menu for the program you’re interested in, then click Settings. Go to Automation &gt; Webhooks.

Go to Engagements, click the kebab menu for the program you’re interested in, then click Settings. Go to Automation &gt; Webhooks.

Enter your Payload URL. This URL will be used to receive POST requests.

Enter your webhook secret in the Secret field. The secret is used to validate that the request came from HackerOne. Learn how to <a href="https://api.hackerone.com/webhooks/#payloads-validating-payloads-from-hackerone" rel="nofollow noopener noreferrer" target="_blank">validate the payload using a secret</a>.

Select which events you’d like to trigger the webhook. You can choose between:

1. Send me everything: All events will trigger the webhook.
2. Let me specify individual events: You can choose which events you'd like to trigger the webhook.

1. Go to Engagements, click the kebab menu for the program you’re interested in, then click Settings. Go to Automation &gt; Webhooks.
2. Click New webhook.
3. Enter your Payload URL. This URL will be used to receive POST requests.
4. Enter your webhook secret in the Secret field. The secret is used to validate that the request came from HackerOne. Learn how to <a href="https://api.hackerone.com/webhooks/#payloads-validating-payloads-from-hackerone" rel="nofollow noopener noreferrer" target="_blank">validate the payload using a secret</a>.
5. Select which events you’d like to trigger the webhook. You can choose between:
 1. Send me everything: All events will trigger the webhook.
 2. Let me specify individual events: You can choose which events you'd like to trigger the webhook.
6. Click Add webhook. ​

Click Edit for the webhook you want to update.

(Optional) Select Test request to send an example request to the configured Payload URL.

1. To access webhooks, go to Engagements, click the kebab menu for the program you’re interested in, then click Settings. Go to Automation &gt; Webhooks.
2. Click Edit for the webhook you want to update.
3. Update the fields you want to change.
4. (Optional) Select Test request to send an example request to the configured Payload URL.
5. Click Update webhook.

You can view recent deliveries made under the Recent deliveries section. Click on any of the deliveries to view the POST payload request.

Click on the Response tab to view the payload responses.

Webhooks

Find answers and get help from Intercom Support and Community Experts

Link, Press control-option-right-arrow to exit

Empty Help Center

Uh oh. That page doesn’t exist.

Disappointed

Neutral

Smiley

Thinking...

Searching through sources...

Analyzing...

Tickets submitted through the messenger or by a support agent in your conversation will appear here.

Webhooks

Add a New Webhook

Managing Webhooks

View Recent Deliveries