voice-call: enforce exact webhook path matching for inbound webhooks

[afurm]

Summary

Describe the problem and fix in 2–5 bullets:

• Problem: VoiceCallWebhookServer matched incoming webhook paths using startsWith, so lookalike paths such as /voice/webhook-evil were treated as valid webhook endpoints.
• Why it matters: Prefix-based matching widens the exposed request surface and can route unintended paths into webhook verification/parsing logic.
• What changed: Replaced prefix path matching with normalized exact-path matching (including safe trailing-slash normalization) and added a regression test for the lookalike-path case.
• What did NOT change (scope boundary): No provider signature algorithms, auth token handling, call processing logic, or webhook body parsing behavior were changed.

Change Type (select all)

• Bug fix
• Feature
• Refactor
• Docs
• Security hardening
• Chore/infra

Scope (select all touched areas)

• Gateway / orchestration
• Skills / tool execution
• Auth / tokens
• Memory / storage
• Integrations
• API / contracts
• UI / DX
• CI/CD / infra

Linked Issue/PR

• Closes #
• Related #

User-visible / Behavior Changes

• Requests to lookalike paths (for example /voice/webhook-evil) now return 404 Not Found instead of being processed by the voice webhook handler.
• Valid configured webhook path behavior remains unchanged.

Security Impact (required)

• New permissions/capabilities? (Yes/No) No
• Secrets/tokens handling changed? (Yes/No) No
• New/changed network calls? (Yes/No) No
• Command/tool execution surface changed? (Yes/No) No
• Data access scope changed? (Yes/No) No
• If any Yes, explain risk + mitigation: N/A

Repro + Verification

Environment

• OS: macOS (local dev)
• Runtime/container: Node 22 + pnpm + Vitest
• Model/provider: N/A
• Integration/channel (if any): extensions/voice-call webhook server
• Relevant config (redacted): serve.path=/voice/webhook

Steps

1. Start VoiceCallWebhookServer with serve.path=/voice/webhook.
2. Send POST to /voice/webhook-evil.
3. Observe response code and whether webhook verification/parsing handlers are invoked.

Expected

• Lookalike path is rejected with 404.
• Webhook verification and event parsing are not invoked.

Actual

• After this fix, behavior matches expected.
• Before this fix, prefix lookalike paths were accepted by the path gate.

Evidence

Attach at least one:

• Failing test/log before + passing after
• Trace/log snippets
• Screenshot/recording
• Perf numbers (if relevant)

Human Verification (required)

What you personally verified (not just CI), and how:

• Verified scenarios: Ran vitest for extensions/voice-call/src/webhook.test.ts and extensions/voice-call/src/webhook-security.test.ts; confirmed new regression test passes and existing webhook security tests still pass.
• Edge cases checked: Exact configured path still works; lookalike prefix path is rejected.
• What you did not verify: Live end-to-end webhook traffic from Twilio/Plivo/Telnyx in an external environment.

Compatibility / Migration

• Backward compatible? (Yes/No) Yes
• Config/env changes? (Yes/No) No
• Migration needed? (Yes/No) No
• If yes, exact upgrade steps: N/A

Failure Recovery (if this breaks)

• How to disable/revert this change quickly: Revert commit b04bb8d77.
• Files/config to restore: extensions/voice-call/src/webhook.ts, extensions/voice-call/src/webhook.test.ts.
• Known bad symptoms reviewers should watch for: Legitimate webhook requests unexpectedly returning 404 due to path mismatch with provider-configured URL.

Risks and Mitigations

List only real risks for this PR. Add/remove entries as needed. If none, write None.

• Risk: Deployments that relied on non-exact subpath/prefix routing under the webhook path will now be rejected.
• Mitigation: Ensure provider webhook URL matches the configured serve.path exactly.

[greptile-apps]

Greptile Summary

This PR fixes a security-relevant path-matching bug in VoiceCallWebhookServer where the previous startsWith check allowed lookalike paths (e.g. /voice/webhook-evil) to pass the path gate and reach webhook verification and event-parsing logic. The fix introduces exact-path matching with safe trailing-slash normalization.

• webhook.ts: Two private helpers (normalizeWebhookPathForMatch, isWebhookPathMatch) replace the startsWith guard with normalized exact-path comparison. The normalization is correct and handles all expected edge cases (empty string, missing leading slash, trailing slash).
• webhook.test.ts: A regression test is added that sends a POST to a lookalike path and asserts a 404 response with verifyWebhook and parseWebhookEvent never called. The test is logically correct, though it is placed inside the "VoiceCallWebhookServer replay handling" describe block instead of a dedicated path-matching block.

Confidence Score: 5/5

• This PR is safe to merge — the change is tightly scoped, correct, and backed by a regression test.
• The fix is minimal and surgical: only the path comparison predicate changes, and the normalization logic is straightforward with no observable side effects on valid requests. The regression test validates the new behavior. The only finding is a minor test-suite organization issue that does not affect correctness.
• No files require special attention.

_{Last reviewed commit: b04bb8d}

[greptile-apps]

_{2 files reviewed, 1 comment}

_{Edit Code Review Agent Settings | Greptile}

[steipete]

Landed via temp rebase onto main.

• Gate: \

openclaw@2026.3.2 test /Users/steipete/Projects/clawdbot5
node scripts/test-parallel.mjs extensions/voice-call/src/webhook.test.ts -t 'rejects lookalike webhook paths that only match by prefix'

RUN v4.0.18 /Users/steipete/Projects/clawdbot5

✓ extensions/voice-call/src/webhook.test.ts (7 tests | 6 skipped) 15ms

Test Files 1 passed (1)
Tests 1 passed | 6 skipped (7)
Start at 18:58:00
Duration 5.41s (transform 3.44s, setup 120ms, import 5.18s, tests 15ms, environment 0ms)

• Land commit: 8ef9d2a
• Merge commit: 84d9b64

Thanks @afurm!