The Zapier Engineering Blog
A blog about hacking, development workflow automation, and how to get things done with less work.
Submit a Bug via HackerOne
Submit a Security Bug
Use the form below to submit your finding. Please be sure to review the Bug Bounty Program before submitting.
If you have a HackerOne account and are logged in, the submission will be automatically attributed to you. If not, please be sure to include your email...
Bug Bounty Hall of Fame
We'd like to give a shout out to all of the researchers who have helped us make Zapier a little better over the years. Thanks for all of your work!
2021
Machine learning made easier with datto package
Machine learning isn't easy
Machine learning can get complex rather quickly. There are so many steps to the process, and keeping track of everything you've done is tricky at times.
Here at Zapier, we're experimenting with all types of machine learning algorithms. From recommending Zaps to automating support ticket responses...
How to write great bug bounty submissions
Getting clear and concise details on any security issue in Zapier is essential to ensure we can quickly triage and confirm your submission. Here, we've provided a suggested format and some tips for writing a great bug bounty report.
Before submitting, please refer to the security exploit bounty program page...
Zapier at PyCon 2019
PyCon US in Cleveland is starting in a couple of weeks. We at Zapier had a great time at PyCon last year, and we're excited to return as a sponsor for the second year in a row!
The crew this year consists of a number of engineers and recruiters. We...
How to Use the Google Calendar API
Google Calendar is one of the most popular ways to manage events, meetings, holidays, and anything else you need to schedule. The Google Calendar API lets you add and update events automatically, so your computer manage your calendar for you!
Here's everything you need to know about the Google Calendar...
Google One-tap Experiments: An Improved UX with IFrames and Cookies
Google One-tap is a new experience that allows users to create an account or log in to your website with a single click. It builds on the popular Sign in with Google button to cut an entire page out of the authentication flow:
Allowing people to sign in with their...
Track Your API Users to Gauge Integration Effectiveness
Your best customers probably use your API, even though they typically aren’t writing a single line of code. For SaaS applications, users have come to expect their software to interact with all their other tools. Integrations aren’t just for one-time co-promotion—they make both services more valuable. Just like you put...
API Best Practices: Webhooks, Deprecation, and Design
At Zapier we love what APIs make possible, but we also wrestle with them every day. Our developer platform connects to over 1,000 APIs with millions of a calls every day. We run into API downtime, anti-patterns, and deprecations all the time. Here we’ve collected some of the best tips...
How we used iptables to replicate UDP traffic when upgrading our Graylog cluster
At Zapier, we're big fans of Graylog, and rely heavily on its logs to help us track down tricky bugs and correlate customer issues with specific outages.
Recently, we needed to upgrade our Graylog cluster. Since we had to do this with zero downtime, we decided to provision a...