ISVforce Guide
jSummer '26 (API version 67.0)
Spring '26 (API version 66.0)
Winter '26 (API version 65.0)
Summer '25 (API version 64.0)
Spring '25 (API version 63.0)
Winter '25 (API version 62.0)
Summer '24 (API version 61.0)
Spring '24 (API version 60.0)
Winter '24 (API version 59.0)
Summer '23 (API version 58.0)
Spring '23 (API version 57.0)
Winter '23 (API version 56.0)
Summer '22 (API version 55.0)
Spring '22 (API version 54.0)
Winter '22 (API version 53.0)
Summer '21 (API version 52.0)
Spring '21 (API version 51.0)
Winter '21 (API version 50.0)
Summer '20 (API version 49.0)
Spring '20 (API version 48.0)
Winter '20 (API version 47.0)
Summer '19 (API version 46.0)
Spring '19 (API version 45.0)
Winter '19 (API version 44.0)
Summer '18 (API version 43.0)
Spring '18 (API version 42.0)
Winter '18 (API version 41.0)
Summer '17 (API version 40.0)
Spring '17 (API version 39.0)
Winter '17 (API version 38.0)
Summer '16 (API version 37.0)
Spring '16 (API version 36.0)
Winter '16 (API version 35.0)
Summer '15 (API version 34.0)
Spring '15 (API version 33.0)
Winter '15 (API version 32.0)
Spring '14 (API version 30.0)
Release Notes
Use Managed Packages to Develop Your AppExchange Solution
What Is AppExchange?
Launch the AppExchange Partner Console
Connect Your Dev Hub or Packaging Org to the Partner Console
Create or Edit Your Provider Profile
Create or Edit Your AppExchange Listing
Select Business Needs for Your AppExchange Solution
Show Diverse-Owned Business Details on Your AppExchange Listing
Show Accessibility Details on Your AppExchange Listing
Show Pledge 1% Details on Your AppExchange Listing
Make Your AppExchange Listing Effective
Select an Installation Method
Register Your Package and Choose License Settings
Required Materials for Security Review Submission
How Does AppExchange Search Work?
Email Notifications
Update the Solution in Your AppExchange Listing
OEM User License Guide
Newer Version Available
Complete the Security Review Cycle
To distribute a managed package, Salesforce Platform API solution, or Marketing Cloud
API solution on AppExchange, it must pass our security review. Use the security review wizard in
the Salesforce Partner Console to manage your reviews. Submit your solution for an initial review.
Resubmit a solution that you revised to correct security issues detected in a previous review. Pay
security review fees.
Watch the video to see how to submit your solution for review in the AppExchange Partner Console.
-
Required Materials for Security Review Submission
Learn about the materials that you must provide, such as test environments and documentation, when submitting your solution for an AppExchange security review. Mobile apps have platform-specific submission requirements. Extension packages undergo security review and Salesforce requires the same materials for them as for a standalone solution. -
The AppExchange Security Review Wizard
The security review wizard is the tool that you and other ISV partners use to submit your managed packages, Salesforce API solutions, and Marketing Cloud API solutions for security review. After you submit, use the wizard to track the progress of your reviews and to get feedback from and communicate with the teams working on your reviews. The wizard is a feature of the AppExchange Partner Console. -
Manage Your Security Reviews
Manage your security reviews in the AppExchange Partner Console’s security review wizard. Create and submit your solution for review. Check the detailed status information that’s delivered in the wizard. Communicate directly with the teams working on your reviews. Download your review report. Submit false-positives documentation. -
Act on Security Review Results
Approximately 4–6 weeks after you submit a solution for an initial review, your security review is complete. Check the AppExchange Partner Console to see if your solution passed. Learn how to publicly list a solution that passed and how to request a follow-up review for a solution that didn’t. -
Periodic Security Re-Reviews on AppExchange
To help safeguard against the latest vulnerabilities, we conduct periodic security re-reviews of AppExchange solutions. These reviews are similar in scope to an initial security review, and they include automated and manual testing. You can voluntarily request a re-review of your solution, or in certain instances we notify you that your solution requires a re-review. In both cases, security review fees apply.