github-webhooks
Receive and verify GitHub webhooks. Use when setting up GitHub webhook handlers, debugging signature verification, or handling repository events like push, pull_request, issues, or release.
96
95%
Does it follow best practices?
Impact
98%
1.53xAverage score across 3 eval scenarios
Advisory
Suggest reviewing before use
Quality
Discovery
89%Based on the skill's description, can an agent find and select it at the right time? Clear, specific descriptions lead to better discovery.
This is a well-crafted skill description that excels at trigger terms and completeness, with explicit 'Use when' guidance and specific GitHub event types. The main weakness is that the capability description could be more specific about concrete actions beyond 'receive and verify'. Overall, it provides strong differentiation and would help Claude select this skill appropriately.
| Dimension | Reasoning | Score |
|---|---|---|
Specificity | Names the domain (GitHub webhooks) and some actions ('receive', 'verify', 'setting up', 'debugging'), but doesn't list comprehensive concrete actions like parsing payloads, responding to specific event types, or configuring endpoints. | 2 / 3 |
Completeness | Clearly answers both what ('Receive and verify GitHub webhooks') and when ('Use when setting up GitHub webhook handlers, debugging signature verification, or handling repository events') with explicit trigger scenarios. | 3 / 3 |
Trigger Term Quality | Excellent coverage of natural terms users would say: 'GitHub webhooks', 'webhook handlers', 'signature verification', and specific event types like 'push', 'pull_request', 'issues', 'release' that users would naturally mention. | 3 / 3 |
Distinctiveness Conflict Risk | Very specific niche focused on GitHub webhooks with distinct triggers like 'signature verification' and specific event types. Unlikely to conflict with general GitHub skills or other webhook providers. | 3 / 3 |
Total | 11 / 12 Passed |
Implementation
100%Reviews the quality of instructions and guidance provided to agents. Good implementation is clear, handles edge cases, and produces reliable results.
This is an exemplary skill file that provides complete, executable webhook handling code with proper security verification, clear workflow sequencing, and well-organized progressive disclosure. The content is concise yet comprehensive, with appropriate references to detailed materials and related skills without unnecessary explanation of concepts Claude already understands.
| Dimension | Reasoning | Score |
|---|---|---|
Conciseness | The skill is lean and efficient, providing executable code without explaining basic concepts Claude already knows. Every section serves a purpose with no padding or unnecessary context about what webhooks are. | 3 / 3 |
Actionability | Provides fully executable, copy-paste ready code for both JavaScript/Express and Python/FastAPI. Includes complete signature verification functions, handler setup, and even local development commands. | 3 / 3 |
Workflow Clarity | The Express handler demonstrates clear workflow: verify signature first, parse payload after verification, then handle by event type. Comments like 'CRITICAL: Use express.raw()' highlight important validation steps. | 3 / 3 |
Progressive Disclosure | Excellent structure with essential code inline and clear one-level-deep references to examples/, references/, and related skills. Tables for event types and headers provide quick reference without bloating the main content. | 3 / 3 |
Total | 12 / 12 Passed |
Validation
100%Checks the skill against the spec for correct structure and formatting. All validation checks must pass before discovery and implementation can be scored.
Validation — 11 / 11 Passed
Validation for skill structure
No warnings or errors.
- Repository
- hookdeck/webhook-skills
- Commit
f8a4801
- Reviewed
Table of Contents
Is this your skill?
If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.