Gusto’s security team uses third parties to conduct penetration tests to identify deficiencies in the system that may affect critical assets.
Gusto uses third-party security tools to continuously scan our applications, systems, and infrastructure for security risks and vulnerabilities.
Gusto’s code repositories are regularly scanned for security issues using static code analysis.
Gusto offers rewards for user-submitted bugs found in our API. For more information, check out the Bug Bounty Program section at the bottom of the page.