Stripe webhook

Receive an inbound Stripe webhook event. Unauthenticated — request validity is established by verifying the Stripe-Signature header against the configured signing secret. Returns 400 for a missing or invalid signature; handlers themselves are not caught — they raise on internal failures so Stripe retries (at-least-once delivery) and Sentry pages.