pub fn verify(secret: &WebhookSecret, content: &[u8], signature: &str) -> boolExpand description
Verify a base64-encoded HMAC-SHA256 signature against content using secret.
Uses constant-time comparison to prevent timing attacks. Returns false if
signature is not valid base64 or does not match.