CommandsCore Commands
/resetsecret
Rotate the signing secret for a webhook and receive the new secret via DM.
Generates a new 256-character signing secret for a webhook and sends it to you via DM. You must then update the secret in your GitHub webhook settings — GitHub will reject any events signed with the old secret.
Your DMs must be open from server members. If the bot cannot DM you, the secret is still rotated but you won't receive the new value.
After running this command you must update the Secret field in your GitHub webhook settings. Events will fail HMAC validation and be rejected until you do.
Usage
Parameters
| Prop | Type | Default |
|---|---|---|
id | string | - |
Permissions
Requires Manage Server (MANAGE_GUILD).
Cooldown
60 seconds (per guild).
After resetting
- Open GitHub repository (or organization) → Settings → Webhooks
- Click the webhook you registered with Octoflow
- Update the Secret field with the new value from your DM
- Click Update webhook
Delete the DM after updating.