Skip to content
Changelog
API update: rotate GitHub webhook secrets for your applications

API update: rotate GitHub webhook secrets for your applications

April 21, 2026·David Legrand
David Legrand

The Clever Cloud API now exposes a dedicated endpoint to rotate the GitHub webhook secret of an application linked to a GitHub repository.

The rotation applies to the target application and its siblings sharing the same webhook, so a single call keeps every linked deployment in sync with the new secret. Until now, rotating a webhook secret meant creating a new application, which was cumbersome and error-prone. The new endpoint replaces that workflow with a single authenticated call.

How to use it

You can call this endpoint through any authenticated request to the Clever Cloud API, or through the clever curl command of Clever Tools, which signs the request using the active user profile:

clever curl -X POST https://api.clever-cloud.com/v2/organisations/{orgId}/applications/{appId}/github-webhook/secret

The response confirms the rotation. Any existing GitHub push event already in flight keeps working with the previous secret until GitHub picks up the new configuration; subsequent deliveries use the rotated secret automatically.

Refer to the v2 API reference for the full request and response schema.

Last updated on
Images update: Node.js 24.15, Clever Tools 4.8, nginx 1.30, FrankenPHP 1.12.2Matomo 5.9 is available with CNIL compliance automation and segment management