The Zapier Engineering Blog

Submit a Security Bug

Use the form below to submit your finding. Please be sure to review the Bug Bounty Program before submitting.

If you have a HackerOne account and are logged in, the submission will be automatically attributed to you. If not, please be sure to include your email...

We'd like to give a shout out to all of the researchers who have helped us make Zapier a little better over the years. Thanks for all of your work!

2021

• Ouad Mohamed
• Mohammad Arshad Kazmi
• Albin Thomas
• Latifa Berchil
• Samuel Valmiki
• Syed Ali Abbas
• Ameer Hamza
• Zin Min Phyo...

Machine learning isn't easy

Machine learning can get complex rather quickly. There are so many steps to the process, and keeping track of everything you've done is tricky at times.

Here at Zapier, we're experimenting with all types of machine learning algorithms. From recommending Zaps to automating support ticket responses...

Getting clear and concise details on any security issue in Zapier is essential to ensure we can quickly triage and confirm your submission. Here, we've provided a suggested format and some tips for writing a great bug bounty report.

Before submitting, please refer to the security exploit bounty program page...

PyCon US in Cleveland is starting in a couple of weeks. We at Zapier had a great time at PyCon last year, and we're excited to return as a sponsor for the second year in a row!

The crew this year consists of a number of engineers and recruiters. We...

Google Calendar is one of the most popular ways to manage events, meetings, holidays, and anything else you need to schedule. The Google Calendar API lets you add and update events automatically, so your computer manage your calendar for you!

Here's everything you need to know about the Google Calendar...

Google One-tap is a new experience that allows users to create an account or log in to your website with a single click. It builds on the popular Sign in with Google button to cut an entire page out of the authentication flow:

Allowing people to sign in with their...

Your best customers probably use your API, even though they typically aren’t writing a single line of code. For SaaS applications, users have come to expect their software to interact with all their other tools. Integrations aren’t just for one-time co-promotion—they make both services more valuable. Just like you put...

At Zapier we love what APIs make possible, but we also wrestle with them every day. Our developer platform connects to over 1,000 APIs with millions of a calls every day. We run into API downtime, anti-patterns, and deprecations all the time. Here we’ve collected some of the best tips...

At Zapier, we're big fans of Graylog, and rely heavily on its logs to help us track down tricky bugs and correlate customer issues with specific outages.

Recently, we needed to upgrade our Graylog cluster. Since we had to do this with zero downtime, we decided to provision a...