Anyone verifying a Stripe webhook request via this libraryβs constructEvent function.
constructEvent
Upgrade to 1.1.4.
Use await verifyHeader(...) directly instead of constructEvent.
await verifyHeader(...)
https://github.com/worker-tools/stripe-webhook/issues/1
github.com/worker-tools/stripe-webhook/security/advisories/GHSA-4g53-vp7q-gfjv