From now on, all <a target="_blank" rel="noopener noreferrer nofollow" class="link" href="https://docs.mailtrap.io/email-api-smtp/advanced/webhooks">Mailtrap webhooks</a> will include cryptographic signatures, so you can verify that incoming requests genuinely come from us and haven't been tampered with.If you use webhooks for deliverability monitoring, CRM sync, or auditing, this adds an extra layer of security using industry-standard cryptographic verification.Notes:<ul><li>Every webhook request is signed automatically</li><li>You can confirm the request originated from Mailtrap before processing it</li><li>No action needed to enable it — all existing webhooks will include signatures</li></ul>To find your signature key, simply navigate to the webhook you want to configure, and it will be displayed in the webhook details.<img data-width="100%" data-align="left" alt="" data-featurebase-content-key="68b8416cbefe17ed0a003157/changelog/6979d9787439dae843fa0e6e/019c03fb-e2f6-7ee3-90c3-b6ad42256265/b64u-d2ViaG9va3MgY2hhbmdlbG9nLnBuZw.png" src="https://68b8416cbefe17ed0a003157.featurebase-attachments.com/c/changelog/6979d9787439dae843fa0e6e/019c03fb-e2f6-7ee3-90c3-b6ad42256265/b64u-d2ViaG9va3MgY2hhbmdlbG9nLnBuZw.png?X-Amz-Expires=3600&amp;X-Amz-Date=20260218T010000Z&amp;X-Amz-Algorithm=AWS4-HMAC-SHA256&amp;X-Amz-Credential=DO801TYC4FCVNNEKURKM%2F20260218%2Ffra1%2Fs3%2Faws4_request&amp;X-Amz-SignedHeaders=host&amp;X-Amz-Signature=7799b9ebf28f8f858a325fe50d65ff8d4428ede7f1d73bdad46d678101188d29" data-featurebase-content-filename="webhooks changelog.png">

Webhook signature verification

Help Center

Improved

Fixed

mailtrap

In Review

Planned

In Progress

Completed

Rejected

High Priority

Low Priority

Backlog

Next up

Done

Main Roadmap

Hey {name|there}! 👋