Request a Follow-Up Security Review for an API Solution with Revised Code and False Positives

Request a follow-up review when you determine that some vulnerabilities identified in the AppExchange security review for your API solution are false positives and you changed code to fix other vulnerabilities. To request a follow-up review, start a new review from the Solutions page in the AppExchange Partner Console. Submit your remediated solution and false-positives documentation. There’s a fee to retest a remediated solution.
Before you request a follow-up review, create a new API solution to submit for review.

User Permissions Needed
To access the AppExchange Partner Console: Manage Listings
  1. Log in to the Salesforce Partner Community.
  2. Click Publishing | Technologies | Solutions.
  3. Connect your new API solution to the Partner Console.
    1. Click Connect Technology.
    2. Select API.
    3. Select an API solution type.
    4. Enter the required information for the new API solution.
    5. Click Connect.
    Your API solution is now listed on the Solutions page.
  4. Locate your new API solution on the Solutions page.
  5. To launch the security review wizard, click Start Review.
  6. Click Upload Documentation.
  7. Upload your false-positives document and give it a descriptive title.
  8. Enter all other required information in the security review wizard, pay the review fee, and submit your new solution for review.