From Tradeshift operations we have been closely following the advisories regarding the Shellshock vulnerability which affects bash shell. The bash shell is a standard component of most Linux systems. Much of Tradeshifts infrastructure does run on Linux based systems, which has prompted us to take the following measures:

1) All servers have been patched with security updates as they have been made available, and we continue to monitor the release of patches, and applying them as needed.
2) An internal audit of where the Tradeshift platform interfaces with the bash shell, and we have taken the necessary measures in that respect.
We can confirm that Tradeshift platform has not been compromised at this point in time.

As always, we are acutely aware that we process and archive data for which the privacy is an important concern of our users, and we continuously evaluate the security of the platform accordingly.

If you have any questions or concerns specific to your Tradeshift account please feel free to reach out to us.