GitHub App webhook service for CI access guardrails.
This is the operator entry point for the service. It is not the product workflow itself — product actions (bootstrap PRs, migration PRs, PR checks, and managed guidance issues) happen in GitHub, on the repositories where the GitHub App is installed.
GET /health — health check. Returns {"status":"ok"} once the webhook server is accepting connections.GET /status — thin read-only operator status shell. May require HTTP Basic Auth if the operator has configured credentials; otherwise it is served without auth.POST /webhook — GitHub webhook endpoint. POST only; requests must be signed by GitHub with the shared webhook secret. Not intended to be opened in a browser.This page is static. It does not report whether
webhook delivery is currently working, whether the app is fully
configured, or whether any repository is in a healthy state. Use
/status for the operator-facing view of what the app has
actually observed, and /health as the machine liveness
probe.