Only the latest version of each of the following packages receives security updates:
zapier-platform-core
zapier-platform-cli
zapier-platform-schema
zapier-platform-legacy-scripting-runner
The latest published version of each of those is found via this search (ignoring the packages that aren't published by zapier-engineering
): https://www.npmjs.com/search?q=zapier-platform
If you've found a security issue with one of the above published packages, please write into security@zapier.com
and mention:
- this repo
#team-dev-platform
- reproduction steps
- severity/impact of the vulnerability
Once you've done that, our security team will reach out to you.
Thanks!