My application will ne running in AWS and the vocie agent in vapi may require some additional information based on conversasation with customer. I want to have multiple tools and let vapi assistant decide what to be called depending on the context of the discussion. Is this achievable? Also I would like to know what are best practises to secure our webhooks.

> I want to have multiple tools and let vapi assistant decide what to be called depending on the context of the discussion. Is this achievable? This is achievable using prompting to learn more about checkout this https://docs.vapi.ai/prompting-guide#appointment-setter > Also I would like to know what are best practises to secure our webhooks. Can you be more specific what exactly your looking out for? > My application will ne running in AWS and the vocie agent in vapi may require some additional information based on conversasation with customer. Can you rephrase this, I couldn't create dots here.

Our customer information will be into our platform there will be certain set of API's exposed from API gateway so that Vapi platform based assistant can call functions which is hosted in our cloud to get additional info. So I wanted to know how we can secure such interaction of data between Vapi platform and our Cloud instance? Here I am referring for outbound call made by our assistant.

@dl_amit You can use either secret or headers to add extra info to your tool call request which will help you authenticate the request and send additional info, apart from this we don't have support payload encryption for now. If you can be more specific around your security requirements I can look for the alternatives if possible. https://cdn.discordapp.com/attachments/1324690520794202133/1326133100786352148/Screenshot_2025-01-07_at_15.45.30.png?ex=677e5131&is=677cffb1&hm=0b75fd29b03e73ff06f185dcbfed6ca439745ff26a5c6171f2d022cd568ec785&