Tell HN: Google halts Gmail and Drive apps and forces them to do security audits

I found our Google App&#x27;s OAuth permissions were decertified today after seeing some users receiving permissions errors. Google did this without so much as an email to us. Upon digging in further, I discovered that they changed their policy on February 7th, effectively revoking our existing app permissions, and requiring anyone requesting those permissions go through a 3rd party security audit (3P) at the cost of (in their estimation) $15,000 to $75,000 before getting permissions back. They also state this process will take 4-6 weeks. This is not specific to us, as noted in the post below:<p>https:&#x2F;&#x2F;support.google.com&#x2F;cloud&#x2F;answer&#x2F;9110914?authuser=2<p>As of now, we are limited to 100 users connecting accounts before we will no longer be able to accept additional users. Maybe we&#x27;ll get a helpful response from Google, but considering the lack of notice, I doubt it.<p>This is why you can&#x27;t build on a platform like Google; you never know when they will suddenly change policy (or shutdown) without notice and shut you down. No company can stop accepting users for 4-6 weeks while a security audit goes on and stay in business.