Files
smom-dbis-138/packages/integration-foundation/dist/webhooks/verifySignature.js
defiQUG d717b504a6
Some checks failed
CI/CD Pipeline / Solidity Contracts (push) Failing after 1m12s
CI/CD Pipeline / Security Scanning (push) Successful in 2m21s
CI/CD Pipeline / Lint and Format (push) Failing after 36s
CI/CD Pipeline / Terraform Validation (push) Failing after 22s
CI/CD Pipeline / Kubernetes Validation (push) Successful in 25s
HYBX OMNL TypeScript & anchor / token-aggregation build + reconcile artifact (push) Failing after 23s
Validation / validate-genesis (push) Successful in 26s
Validation / validate-terraform (push) Failing after 21s
Validation / validate-kubernetes (push) Failing after 9s
Validation / validate-smart-contracts (push) Failing after 8s
Validation / validate-security (push) Failing after 1m15s
Validation / validate-documentation (push) Failing after 15s
OMNL reconcile anchor / Run omnl:reconcile and upload artifacts (push) Failing after 26s
Verify Deployment / Verify Deployment (push) Failing after 56s
feat(omnl): settlement terminal, compliance gates, and HYBX integration foundation
Add operator settlement terminal UI/API, swift-listener service, compliance
idempotency gates, GRU reserve dashboards, and @dbis/integration-foundation
for typed HYBX/ISO adapter contracts.

Co-authored-by: Cursor <cursoragent@cursor.com>
2026-06-07 21:51:32 -07:00

28 lines
1.1 KiB
JavaScript

"use strict";
Object.defineProperty(exports, "__esModule", { value: true });
exports.computeWebhookSignature = computeWebhookSignature;
exports.verifyWebhookSignature = verifyWebhookSignature;
const crypto_1 = require("crypto");
function computeWebhookSignature(secret, payload, algorithm = 'sha256', encoding = 'hex') {
return (0, crypto_1.createHmac)(algorithm, secret).update(payload, 'utf8').digest(encoding);
}
function verifyWebhookSignature(options) {
const { secret, payload, signature, algorithm = 'sha256', encoding = 'hex' } = options;
if (!secret || !signature)
return false;
const expected = computeWebhookSignature(secret, payload, algorithm, encoding);
const provided = signature.startsWith('sha256=') || signature.startsWith('sha512=')
? signature.split('=')[1] ?? ''
: signature;
try {
const a = Buffer.from(expected, encoding);
const b = Buffer.from(provided, encoding);
if (a.length !== b.length)
return false;
return (0, crypto_1.timingSafeEqual)(a, b);
}
catch {
return false;
}
}