Skip to main content

glean-webhooks-events

Facilitates event-driven indexing for Glean using webhooks from platforms like GitHub and Notion, enhancing data integration.

Install this skill

or
58/100

Security score

The glean-webhooks-events skill was audited on May 24, 2026 and we found 18 security issues across 3 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

low line 31

Fetch to external URL

SourceSKILL.md
31const response = await fetch("https://yourapp.com/admin/webhooks", {
medium line 2

Webhook reference - potential data exfiltration

SourceSKILL.md
2name: glean-webhooks-events
medium line 3

Webhook reference - potential data exfiltration

SourceSKILL.md
3description: 'Implement event-driven Glean indexing triggered by source system webhooks
medium line 8

Webhook reference - potential data exfiltration

SourceSKILL.md
8Trigger: "glean webhooks", "glean event indexing", "incremental glean index".
medium line 21

Webhook reference - potential data exfiltration

SourceSKILL.md
21# Glean Webhooks & Events
medium line 25

Webhook reference - potential data exfiltration

SourceSKILL.md
25Glean uses an event-driven indexing model where source system webhooks trigger incremental updates to the Glean Indexing API. Instead of emitting its own webhooks, Glean receives document changes from
medium line 27

Webhook reference - potential data exfiltration

SourceSKILL.md
27## Webhook Registration
low line 30

Webhook reference - potential data exfiltration

SourceSKILL.md
30// Register a source system webhook that pushes to Glean Indexing API
low line 31

Webhook reference - potential data exfiltration

SourceSKILL.md
31const response = await fetch("https://yourapp.com/admin/webhooks", {
low line 35

Webhook reference - potential data exfiltration

SourceSKILL.md
35url: "https://yourapp.com/webhooks/glean-indexer",
low line 37

Webhook reference - potential data exfiltration

SourceSKILL.md
37secret: process.env.GLEAN_WEBHOOK_SECRET,
low line 50

Webhook reference - potential data exfiltration

SourceSKILL.md
50const expected = crypto.createHmac("sha256", process.env.GLEAN_WEBHOOK_SECRET!)
low line 65

Webhook reference - potential data exfiltration

SourceSKILL.md
65app.post("/webhooks/glean-indexer", express.raw({ type: "application/json" }), verifyGleanSignature, (req, res) => {
low line 37

Access to .env file

SourceSKILL.md
37secret: process.env.GLEAN_WEBHOOK_SECRET,
low line 50

Access to .env file

SourceSKILL.md
50const expected = crypto.createHmac("sha256", process.env.GLEAN_WEBHOOK_SECRET!)
low line 31

External URL reference

SourceSKILL.md
31const response = await fetch("https://yourapp.com/admin/webhooks", {
low line 35

External URL reference

SourceSKILL.md
35url: "https://yourapp.com/webhooks/glean-indexer",
low line 119

External URL reference

SourceSKILL.md
119- [Glean Indexing API](https://developers.glean.com/api/indexing-api/index-documents)
Scanned on May 24, 2026
View Security Dashboard
Installation guide →
GitHub Stars 2.2K
Rate this skill
Categorydevelopment
UpdatedJune 10, 2026
claudeclaude-codedesignnotiondocxgitapidata-engineerbackend-developerproduct-managergithubconfluencenotiondevelopmentproduct
jeremylongshore/claude-code-plugins-plus-skills