coracle/caravel
1
1
Fork 2
Code Issues 4 Pull Requests Actions Packages Projects Releases Wiki Activity

chore: prevent duplicate Lightning charges by adding durable invoice-level NWC payment guard #51

Merged
hodlbod merged 2 commits from userAdityaa/caravel:prevent-duplicate-lightning into master 2026-04-25 13:02:56 +00:00
Conversation 0 Commits 2 Files Changed 4
+214 -31
userAdityaa commented 2026-04-25 11:23:25 +00:00
Contributor
Copy Link
Copy Source

Summary

This PR fixes a critical billing risk where Stripe webhook retries could trigger multiple NWC payment attempts for the same Stripe invoice. The fix introduces a durable invoice-level NWC payment state guard in SQLite and routes both invoice.created and outstanding-invoice NWC flows through it.

Problem

NWC payment was attempted first, then Stripe invoice was marked paid out-of-band. If Stripe marking failed, webhook handling failed and retries could re-enter payment logic without durable invoice-level protection.

Why this fixes the issue

Stripe retrying the same invoice can no longer create a second Lightning charge attempt for that invoice because the persisted guard blocks reattempts once the invoice is in pending or paid state, and paid state is reused for Stripe reconciliation.

closes #50

### Summary This PR fixes a critical billing risk where Stripe webhook retries could trigger multiple NWC payment attempts for the same Stripe invoice. The fix introduces a durable invoice-level NWC payment state guard in SQLite and routes both invoice.created and outstanding-invoice NWC flows through it. ### Problem NWC payment was attempted first, then Stripe invoice was marked paid out-of-band. If Stripe marking failed, webhook handling failed and retries could re-enter payment logic without durable invoice-level protection. ### Why this fixes the issue Stripe retrying the same invoice can no longer create a second Lightning charge attempt for that invoice because the persisted guard blocks reattempts once the invoice is in pending or paid state, and paid state is reused for Stripe reconciliation. closes #50
userAdityaa added 1 commit 2026-04-25 11:23:25 +00:00
chore: prevent duplicate Lightning charges by adding durable invoice-level NWC payment guard d9c7e0c1e4
hodlbod added 1 commit 2026-04-25 13:02:49 +00:00
Merge branch 'master' into prevent-duplicate-lightning b325d62f5d
hodlbod merged commit 3ecd285290 into master 2026-04-25 13:02:56 +00:00
Sign in to join this conversation.
Reviewers
No Reviewers
Labels
No items
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
hodlbod (hodlbod)
No Assignees
2 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: coracle/caravel#51
Delete Branch "userAdityaa/caravel:prevent-duplicate-lightning"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?