Update securing-your-webhooks.md

[kristianjaeger]

For example in C# you may need to use Encoding.UTF8.GetBytes(payload) instead of Encoding.ASCII.GetBytes(payload). Thanks. Cheers.

Why:

What's being changed:

Check off the following:

• I have reviewed my changes in staging. (look for the deploy-to-heroku link in your pull request, then click View deployment)
• For content changes, I have reviewed the localization checklist
• For content changes, I have reviewed the Content style guide for GitHub Docs.

[welcome]

Thanks for opening this pull request! A GitHub docs team member should be by to give feedback soon. In the meantime, please check out the contributing guidelines.

[kristianjaeger]

@The-Pharoah Yes, this is related to securing the web hook. For someone to properly validate the web hook they need to treat the payload as unicode. Otherwise if there's a unicode character in the webhook JSON the signature will not be validated properly. A few examples of how this can happen are 1) if there's a long merge commit title GitHub automatically puts a "..." unicode character in the message field of the JSON, 2) if someone's name has unicode characters, or 3) if someone uses unicode characters in their pull request title. Cheers.

[janiceilene]

@kristianjaeger Thanks so much for opening a PR! I'll get this triaged for review ⚡

[kristianjaeger]

Thanks, @janiceilene !

[lucascosti]

Thanks a lot for this contribution, @kristianjaeger! 🙇‍♂️

I've reworded the new encoding note and separated it into a separate block closer to the complete code example.

I'll get this merged in! 🎉

[github-actions]

Thanks very much for contributing! Your pull request has been merged 🎉 You should see your changes appear on the site in approximately 24 hours.

[kristianjaeger]

Thanks so much, @lucascosti and @janiceilene ! Cheers.