Hi ​@Deva, welcome to the Community! 

Where are you seeing that Zapier token exactly? You tagged the Webhooks app here, so is the token appearing in one of the fields output by a Webhooks action? Or is it appearing directly within an XML file in Red Team? 

Also, can you share some screenshots outlining the current set up of the Zap so we can get a bit more context on the overall workflow, as well as where you’re seeing that token exactly? Make sure the token and any other sensitive details are removed from the screenshots before sharing—you can use a tool like Zappy for that.

Looking forward to your reply here!

Hi ​@SamB,

Thankyou for your response.

Actually i found the token in a internal configuration file and it is in xml format.

I am attaching an image,

Can you please let me know. It would be a great help.

Best regards,

Deva

Thanks for sending that screenshot over ​@Deva. Ah, I think I misunderstood before—this is more of a security question than a Zap question, right? And you’re looking to verify whether that token in the XML file is actually a valid Zapier token?

If so, I recommend opening a ticket with our Support team here—they can escalate it to our Security team to look into further.

Let me know how it goes or if there’s anything else I can help with in the meantime!