Webhooks & Events
MCPWP fires webhooks when things happen on your site — pages published, approvals created, tools called. Use them to trigger external workflows, sync systems, or notify your team.
| Tool | Description |
|---|---|
wp_list_webhooks | List all registered webhooks |
wp_create_webhook | Register a new webhook |
wp_update_webhook | Update URL or events |
wp_delete_webhook | Remove a webhook |
wp_test_webhook | Send a test payload |
wp_list_webhook_logs | Delivery history + response codes |
wp_list_webhook_events | All available event types |
wp_list_mcp_events | Recent MCP tool call events |
wp_get_event_schema | Payload schema for an event type |
Create a webhook
Section titled “Create a webhook”// wp_create_webhook{ "url": "https://your-app.com/hooks/wordpress", "events": ["page.published", "approval.created", "post.updated"], "secret": "your-signing-secret"}The secret is used to generate an X-MCPWP-Signature header for verification.
Available events
Section titled “Available events”| Event | Fires when |
|---|---|
page.published | Page goes live |
page.updated | Any page update |
page.deleted | Page deleted |
post.published | Post published |
approval.created | New approval request |
approval.applied | Change applied |
approval.rolled_back | Change rolled back |
mcp.tool_called | Any MCP tool called |
media.uploaded | New media added |
seo.issue_found | SEO audit finds new issue |
Verify signatures
Section titled “Verify signatures”const crypto = require('crypto');
function verifySignature(payload, signature, secret) { const expected = crypto .createHmac('sha256', secret) .update(payload) .digest('hex'); return crypto.timingSafeEqual( Buffer.from(signature), Buffer.from(`sha256=${expected}`) );}