ISVforce Guide
No Results
Search Tips:
- Please consider misspellings
- Try different search keywords
Pass the AppExchange Security Review
To distribute managed packages, Salesforce Platform API solutions, or Marketing Cloud Engagement API solutions on AppExchange, they must pass our security review.
The description of the AppExchange Security Review in this section and the links herein is current as of the listed effective date. SFDC may update or modify the AppExchange Security Review from time to time in its sole discretion, with or without notice.
Note
Partner Applications, which includes managed packages, Salesforce Platform API solutions, Marketing Cloud Engagement API solutions, and other solutions referred to herein, are Non-SFDC Applications as defined in Salesforce’s Main Services Agreement (available at https://www.salesforce.com/company/legal/agreements or successor URL). Notwithstanding any security review of a Partner Application, Salesforce makes no guarantees regarding the quality or security of any Partner Application and Customers are responsible for evaluating the quality, security, and functionality of Partner Applications.
Important
-
Prepare for the AppExchange Security Review
The AppExchange security review tests the security posture of your solution, including how well it protects customer data. The goal is to help you identify security vulnerabilities that a hacker, malware, or other threat can exploit. Before you submit your solution for review, perform end-to-end testing, configure test environments, and create supporting documentation. -
Manage Your Security Reviews
Manage your security reviews in the AppExchange Partner Console’s security review wizard. Submit your solution for review. Check the detailed status information that’s delivered in the wizard. Communicate directly with the teams working on your reviews. Download your review report. Submit false-positives documentation.