Replay Attack - CI/CD Glossary Definition
A replay attack re-sends a previously valid request to make it happen a second time.
A replay attack is when an attacker captures a valid request (such as a signed webhook) and resends it later to trigger the action again.
A correct signature alone does not stop replay; defenses add a timestamp check and a nonce or delivery ID so the receiver rejects requests it has already processed or that are too old.
Related guides
HMAC Webhook Signature - CI/CD Glossary DefinitionHMAC Webhook Signature: An HMAC webhook signature is a hash of the webhook payload computed with a shared sec…
Idempotency Key - CI/CD Glossary DefinitionIdempotency Key: An idempotency key is a unique identifier a client attaches to a request so the server proce…
Ephemeral Token - CI/CD Glossary DefinitionEphemeral Token: An ephemeral token is a credential valid for a single use or a very short window, such as a…