FAQ-001332 - Package Dependency Security Review / Dependency Documentation Requirements

To document dependencies on other AppExchange packages during a security review: 1. Include detailed information about the dependencies in your submission materials. 2. If your solution is an extension package for other AppExchange packages, ensure the base solutions have passed the security review. If not, submit both your extension package and the unreviewed base solutions for review. 3. Provide relevant documentation, such as: - URLs - Login credentials for external components - Security scan reports This demonstrates how the dependencies are securely integrated.

The FAQ content is clear and accurate as written. It provides specific, actionable guidance for documenting package dependencies during security review. The three main points (detailed documentation, base package review requirements, and supporting materials) are well-structured and comprehensive. The answer maintains appropriate brevity while covering all essential aspects. No security rules from the available list directly apply to this FAQ since it focuses on documentation and submission process rather than code-level security vulnerabilities or implementation patterns that would trigger scanner rules. The content aligns with AppExchange security review requirements and doesn't contain outdated information or security misconceptions.