It's great that Jira Automation allows teams to configure outgoing webhooks as an action, but it is very likely these outgoing calls will need authentication, stored as a header.

Customers would like to know these authorization headers are not stored in plaintext, but rather encrypted or hashed on their way to the database.