I got tired of rewriting webhook verification for every provider

Name: I got tired of rewriting webhook verification for every provider
Availability: InStock
Author: ontern

by ontern·Mar 3, 2026·4 points·2 comments

Visit Project View on HN

AI Analysis

●●●BangerSolve My ProblemShip ItSlick

Replaces 22 lines of crypto boilerplate with 8 lines across 15+ webhook providers.

Strengths

•Zero-dependency implementation with genuine multi-platform support (Express, Next.js, Cloudflare Workers, GitHub).
•Platform-agnostic abstraction layer lets you swap Stripe→Clerk→GitHub via feature flags, zero redeployment.
•Handles three different signature algorithms (HMAC-SHA256, Ed25519, SHA1) transparently — real pain point solved.

Weaknesses

•Guaranteed delivery tier requires Upstash account; not self-hostable for the reliability features.
•Webhook verification is a solved problem (svix, libraries exist); differentiation relies on ergonomics, not innovation.

Post Description

Every webhook provider has a different signature algorithm and header format and you end up rewriting the same verification boilerplate for each one. Tern absorbs that pain.

Zero-dependency TypeScript SDK. Handles signature verification for Stripe, Polar, Clerk, Shopify, Sentry, Grafana and 15+ more. Works with Express, Next.js and Cloudflare Workers.

Also now Tern opens source supports complete inbound webhook event reliability layer including Queuing, retries, deduplication, replay, dead letter queue and Slack/Discord alerting — all opt-in,