Newer Version Available
Periodic Re-Reviews
When you upgrade a managed package version of a solution that passed security review, you don’t have to go through the full review process again. You can immediately associate the new version to your AppExchange listing.
To identify which listed solutions are due for re-review, we consider potential risk and the amount of time since the solution was listed. To determine potential risk, we run risk-factor reports. If your solution shows significant change, it’s likely that we conduct a re-review. The usual re-review timeframe is six months to two years after the solution was listed. However, if your solution’s risk factor is low, it may not be flagged for re-review.
When the time comes, we contact you to make arrangements. If we find that your solution no longer meets our enterprise security standards, we notify you. We also provide a timeline for you to remedy the issues. In extreme cases, we pull the AppExchange listing from public viewing. Before you can relist it for distribution, you must fix the security issues and submit it for a follow-up review.