Announcing ZapConnect: Success scales with your next Zap
Is there an official word from Zapier about any vulnerabilities and efforts to mitigate them?
Best answer by christina.d 18 December 2021, 04:27
Hi there, @senglish!Great question and definitely appreciate you reaching out.
For clarity, Zapier has performed a review of all of our services that may be using log4j. Thankfully, none of the software written by Zapier uses log4j. Of the third-party tools that do use log4j, we’ve been able to confirm that in each case either:
Our response team has evaluated all processes running across our environments and verified there are no vulnerable versions of log4j running in Zapier’s stack. In addition, we’re using security watchdog tools in our environment that have been configured to alert on any attempt to utilize this exploit and alert our response team. At this time we’ve not found any abnormal activity.
As of this time Zapier does not have any systems of concern with respect to recent log4j security vulnerabilities.I hope this is helpful.
Probably best to submit a ticket via Zapier Support to inquire about this: https://zapier.com/app/get-help
Include a brief intro explaining what we’re going to be doing and
why someone might want to use this code step. Literally can be a sentence or two.
Format these using the Small Heading option.
If there are multiple items in an article that each have the above headings, then format each of those as the Large Heading. As in this example.
Use the Code option found under the … in the top right of the formatting toolbar
Here are your assigned articles :)
Already have an account? Login
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.
Sorry, we're still checking this file's contents to make sure it's safe to download. Please try again in a few minutes.
Sorry, our virus scanner detected that this file isn't safe to download.