https://github.com/georgelopez7/tiramisu

Tiramisu is a simple, open-source, and lightweight HTTP request inspector. Perfect for testing webhooks, APIs, and integrations with ease.
https://github.com/georgelopez7/tiramisu

bun http nextjs sqlite typescript

Last synced: 5 months ago
JSON representation

Tiramisu is a simple, open-source, and lightweight HTTP request inspector. Perfect for testing webhooks, APIs, and integrations with ease.

• Host: GitHub
• URL: https://github.com/georgelopez7/tiramisu
• Owner: georgelopez7
• License: mit
• Created: 2025-12-29T12:40:06.000Z (6 months ago)
• Default Branch: master
• Last Pushed: 2026-01-06T19:35:56.000Z (5 months ago)
• Last Synced: 2026-01-13T19:46:30.265Z (5 months ago)
• Topics: bun, http, nextjs, sqlite, typescript
• Language: TypeScript
• Homepage: https://hub.docker.com/r/geloop/tiramisu
• Size: 4.14 MB
• Stars: 4
• Watchers: 0
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

          


  

  







  Tiramisu is a simple, open-source, and lightweight HTTP request inspector. Perfect for testing webhooks, APIs, and integrations with ease.





    



## Running with Docker

Checkout the Docker image [here](https://hub.docker.com/r/geloop/tiramisu)

`docker-compose.yaml`

```bash

services:

  tiramisu:

    image: geloop/tiramisu:latest

    ports:

      - "3000:3000"

    environment:

      - WEBHOOK_SECRET= [OPTIONAL]

      - SIGNATURE_HEADER= (e.g X-Signature) [OPTIONAL]

      - TIMESTAMP_HEADER= (e.g X-Timestamp) [OPTIONAL]

    volumes:

      - tiramisu-data:/app/data

volumes:

  tiramisu-data:

```

Start **Tiramisu**:

```bash

docker-compose up

```

## Webhook Testing

Tiramisu offers webhook signature validation, allowing you to verify the authenticity of incoming requests.

Set up the following environment variables:

- `WEBHOOK_SECRET`: The secret key used to sign your webhook requests.

- `SIGNATURE_HEADER`: The header key used to store the signature in the request.

- `TIMESTAMP_HEADER`: The header key used to store the timestamp in the request.

#### Validation Process

The expected signature format is: `{timestamp}.{payload}`

Tiramisu uses the SHA256 algorithm to generate generate the signature and validate the received signature from the `SIGNATURE_HEADER` in.

Additionally, any out-of-date requests will be labelled as invalid using the `TIMESTAMP_HEADER` header.

## Tech Stack

![Next.js](https://img.shields.io/badge/Next.js-000000?style=for-the-badge&logo=next.js&logoColor=white)

![Bun](https://img.shields.io/badge/Bun-000000?style=for-the-badge&logo=bun&logoColor=white)

![Drizzle](https://img.shields.io/badge/Drizzle-000000?style=for-the-badge&logo=drizzle&logoColor=white)

![SQLite](https://img.shields.io/badge/SQLite-000000?style=for-the-badge&logo=sqlite&logoColor=white)