SlideShare a Scribd company logo
1 of 18
Download to read offline
Develop & publish “5 star”
AppExchange app
2
I’m Chirag Mehta
I am here because I love to share!
Namaste!
You can find me at
@chiragmehta84
@chiragmehta84
@chiragmehta84
chirag@satrangtech.com
Idea!!!!!
We all go one, isn’t :)
3
Idea to Execution
❖ Believe in Yourself
❖ Create Your Own Personal Board of Advisors
❖ Embrace Risk as Your Best Friend
❖ Be Extremely Patient
❖ Learn How to Sell Your Vision
❖ Connect the Dots Along the Way
❖ Be Passionate With Your Pursuit
❖ Be Purposeful
❖ Always Make the Idea Better
Reference : http://bit.ly/2fbfBuH
4
”
To me, ideas are worth nothing
unless executed. They are just a
multiplier. Execution is worth
millions.
5
Develop
Most essential we consider, but is least time consuming part of app building.
6
Development Life Cycle
Development
Do development.
QA
Sanity and
Regression
testing.
Packaging
Release beta and
major package
versions.
7
”
if everyone is moving forward
together then success takes care of
itself.
8
Security
Really ???
9
Security Review
Force.com
Security Scanner
Scan and fix
vulnerabilities
Read more @
https://security.secure.for
ce.com/sourcescanner/
Web Application
Scanner (ZAP)
External
Integrations
Read more @
https://security.secure.for
ce.com/security/tools/web
app/burpabout
Best Practices
Adhere and follow
best practices.
10
Read more @ https://security.secure.force.com/security/tools/forcecom/scannerhelp
Add Topics : Retire.js, False +ve/-ve, Support Case, Security Office Hours etc
Quality Profile:
The Force.com Security Source Scanner will detect the following
common Apex coding and design issues:
● DML statements inside loops
● SOQL/SOSL inside loops
● Hardcoding Trigger.new[0]
● Hardcoding Trigger.old[0]
● Queries with no Where clause or no LIMIT clause
● Not bulkifying apex methods
● Async (@future) methods inside loops
● Hardcoding IDs
● Multiple triggers on same object
● Static Resource referencing
● Multiple Visualforce forms in the same page
● Test methods without assert
Additional Info
Security Profile:
The scanner will help to detect the following security vulnerability
types:
● Cross Site Scripting (reflected, stored, and DOM based)
● SOQL/SOSL Injection
● Access Control Issues (Sharing, FLS)
● Cross site request forgery attacks
● Arbitrary Redirects
● Overly permissive postMessage targets
11
”
Security review is not a burden, it's a
necessity to ensure customer
success.
12
Support
13
Most important part of app success!
Support
App Notes
- Configuration
Guides
- Release Notes
- Videos
- Tutorial
- FAQ’s
Reach out
- Customers
- Seek feedback
- ISV Org
14
Updates
- Listen to
customer
- Make new
releases
- Address
customer
requirements
Ticket/Case
- Support
System
- Round the
clock support
- Instant
replies
”
Delivery Management is more
important than Project
Management.
15
Resources
Zap Scanner : https://security.secure.force.com/security/tools/webapp/burpabout
Force.com Scanner : https://security.secure.force.com/sourcescanner/
Force.com Scanner Help (FAQs) : https://security.secure.force.com/security/tools/forcecom/scannerhelp
ISV Security Review (Trailhead Module) : https://trailhead.salesforce.com/en/modules/isv_security_review
Build Apps as an AppExchange Partner (Trailhead Trail) : https://trailhead.salesforce.com/en/trails/isv_developer_beginner
AppExchange : https://appexchange.salesforce.com/
Security Office Hours : https://security.secure.force.com/security/contact/ohours
Reite JS : Retire.js
16
My Apps ….17
18
THANKS!
Any questions?
You can find me at
@chiragmehta84
@chiragmehta84
@chiragmehta84
chirag@satrangtech.com

More Related Content

Recently uploaded

Abortion Pills For Sale WhatsApp[[+27737758557]] In Birch Acres, Abortion Pil...
Abortion Pills For Sale WhatsApp[[+27737758557]] In Birch Acres, Abortion Pil...Abortion Pills For Sale WhatsApp[[+27737758557]] In Birch Acres, Abortion Pil...
Abortion Pills For Sale WhatsApp[[+27737758557]] In Birch Acres, Abortion Pil...
drm1699
 

Recently uploaded (20)

Entropy, Software Quality, and Innovation (presented at Princeton Plasma Phys...
Entropy, Software Quality, and Innovation (presented at Princeton Plasma Phys...Entropy, Software Quality, and Innovation (presented at Princeton Plasma Phys...
Entropy, Software Quality, and Innovation (presented at Princeton Plasma Phys...
 
Workshop - Architecting Innovative Graph Applications- GraphSummit Milan
Workshop -  Architecting Innovative Graph Applications- GraphSummit MilanWorkshop -  Architecting Innovative Graph Applications- GraphSummit Milan
Workshop - Architecting Innovative Graph Applications- GraphSummit Milan
 
Abortion Pill Prices Germiston ](+27832195400*)[ 🏥 Women's Abortion Clinic in...
Abortion Pill Prices Germiston ](+27832195400*)[ 🏥 Women's Abortion Clinic in...Abortion Pill Prices Germiston ](+27832195400*)[ 🏥 Women's Abortion Clinic in...
Abortion Pill Prices Germiston ](+27832195400*)[ 🏥 Women's Abortion Clinic in...
 
The Evolution of Web App Testing_ An Ultimate Guide to Future Trends.pdf
The Evolution of Web App Testing_ An Ultimate Guide to Future Trends.pdfThe Evolution of Web App Testing_ An Ultimate Guide to Future Trends.pdf
The Evolution of Web App Testing_ An Ultimate Guide to Future Trends.pdf
 
Abortion Clinic Pretoria ](+27832195400*)[ Abortion Clinic Near Me ● Abortion...
Abortion Clinic Pretoria ](+27832195400*)[ Abortion Clinic Near Me ● Abortion...Abortion Clinic Pretoria ](+27832195400*)[ Abortion Clinic Near Me ● Abortion...
Abortion Clinic Pretoria ](+27832195400*)[ Abortion Clinic Near Me ● Abortion...
 
GraphSummit Milan - Visione e roadmap del prodotto Neo4j
GraphSummit Milan - Visione e roadmap del prodotto Neo4jGraphSummit Milan - Visione e roadmap del prodotto Neo4j
GraphSummit Milan - Visione e roadmap del prodotto Neo4j
 
Test Automation Design Patterns_ A Comprehensive Guide.pdf
Test Automation Design Patterns_ A Comprehensive Guide.pdfTest Automation Design Patterns_ A Comprehensive Guide.pdf
Test Automation Design Patterns_ A Comprehensive Guide.pdf
 
From Theory to Practice: Utilizing SpiraPlan's REST API
From Theory to Practice: Utilizing SpiraPlan's REST APIFrom Theory to Practice: Utilizing SpiraPlan's REST API
From Theory to Practice: Utilizing SpiraPlan's REST API
 
Abortion Pills For Sale WhatsApp[[+27737758557]] In Birch Acres, Abortion Pil...
Abortion Pills For Sale WhatsApp[[+27737758557]] In Birch Acres, Abortion Pil...Abortion Pills For Sale WhatsApp[[+27737758557]] In Birch Acres, Abortion Pil...
Abortion Pills For Sale WhatsApp[[+27737758557]] In Birch Acres, Abortion Pil...
 
Transformer Neural Network Use Cases with Links
Transformer Neural Network Use Cases with LinksTransformer Neural Network Use Cases with Links
Transformer Neural Network Use Cases with Links
 
Anypoint Code Builder - Munich MuleSoft Meetup - 16th May 2024
Anypoint Code Builder - Munich MuleSoft Meetup - 16th May 2024Anypoint Code Builder - Munich MuleSoft Meetup - 16th May 2024
Anypoint Code Builder - Munich MuleSoft Meetup - 16th May 2024
 
Effective Strategies for Wix's Scaling challenges - GeeCon
Effective Strategies for Wix's Scaling challenges - GeeConEffective Strategies for Wix's Scaling challenges - GeeCon
Effective Strategies for Wix's Scaling challenges - GeeCon
 
Community is Just as Important as Code by Andrea Goulet
Community is Just as Important as Code by Andrea GouletCommunity is Just as Important as Code by Andrea Goulet
Community is Just as Important as Code by Andrea Goulet
 
^Clinic ^%[+27788225528*Abortion Pills For Sale In soweto
^Clinic ^%[+27788225528*Abortion Pills For Sale In soweto^Clinic ^%[+27788225528*Abortion Pills For Sale In soweto
^Clinic ^%[+27788225528*Abortion Pills For Sale In soweto
 
^Clinic ^%[+27788225528*Abortion Pills For Sale In witbank
^Clinic ^%[+27788225528*Abortion Pills For Sale In witbank^Clinic ^%[+27788225528*Abortion Pills For Sale In witbank
^Clinic ^%[+27788225528*Abortion Pills For Sale In witbank
 
Food Delivery Business App Development Guide 2024
Food Delivery Business App Development Guide 2024Food Delivery Business App Development Guide 2024
Food Delivery Business App Development Guide 2024
 
Microsoft365_Dev_Security_2024_05_16.pdf
Microsoft365_Dev_Security_2024_05_16.pdfMicrosoft365_Dev_Security_2024_05_16.pdf
Microsoft365_Dev_Security_2024_05_16.pdf
 
What is a Recruitment Management Software?
What is a Recruitment Management Software?What is a Recruitment Management Software?
What is a Recruitment Management Software?
 
GraphSummit Milan & Stockholm - Neo4j: The Art of the Possible with Graph
GraphSummit Milan & Stockholm - Neo4j: The Art of the Possible with GraphGraphSummit Milan & Stockholm - Neo4j: The Art of the Possible with Graph
GraphSummit Milan & Stockholm - Neo4j: The Art of the Possible with Graph
 
Software Engineering - Introduction + Process Models + Requirements Engineering
Software Engineering - Introduction + Process Models + Requirements EngineeringSoftware Engineering - Introduction + Process Models + Requirements Engineering
Software Engineering - Introduction + Process Models + Requirements Engineering
 

Featured

Social Media Marketing Trends 2024 // The Global Indie Insights
Social Media Marketing Trends 2024 // The Global Indie InsightsSocial Media Marketing Trends 2024 // The Global Indie Insights
Social Media Marketing Trends 2024 // The Global Indie Insights
Kurio // The Social Media Age(ncy)
 
Good Stuff Happens in 1:1 Meetings: Why you need them and how to do them well
Good Stuff Happens in 1:1 Meetings: Why you need them and how to do them wellGood Stuff Happens in 1:1 Meetings: Why you need them and how to do them well
Good Stuff Happens in 1:1 Meetings: Why you need them and how to do them well
Saba Software
 
Introduction to C Programming Language
Introduction to C Programming LanguageIntroduction to C Programming Language
Introduction to C Programming Language
Simplilearn
 

Featured (20)

How to Prepare For a Successful Job Search for 2024
How to Prepare For a Successful Job Search for 2024How to Prepare For a Successful Job Search for 2024
How to Prepare For a Successful Job Search for 2024
 
Social Media Marketing Trends 2024 // The Global Indie Insights
Social Media Marketing Trends 2024 // The Global Indie InsightsSocial Media Marketing Trends 2024 // The Global Indie Insights
Social Media Marketing Trends 2024 // The Global Indie Insights
 
Trends In Paid Search: Navigating The Digital Landscape In 2024
Trends In Paid Search: Navigating The Digital Landscape In 2024Trends In Paid Search: Navigating The Digital Landscape In 2024
Trends In Paid Search: Navigating The Digital Landscape In 2024
 
5 Public speaking tips from TED - Visualized summary
5 Public speaking tips from TED - Visualized summary5 Public speaking tips from TED - Visualized summary
5 Public speaking tips from TED - Visualized summary
 
ChatGPT and the Future of Work - Clark Boyd
ChatGPT and the Future of Work - Clark Boyd ChatGPT and the Future of Work - Clark Boyd
ChatGPT and the Future of Work - Clark Boyd
 
Getting into the tech field. what next
Getting into the tech field. what next Getting into the tech field. what next
Getting into the tech field. what next
 
Google's Just Not That Into You: Understanding Core Updates & Search Intent
Google's Just Not That Into You: Understanding Core Updates & Search IntentGoogle's Just Not That Into You: Understanding Core Updates & Search Intent
Google's Just Not That Into You: Understanding Core Updates & Search Intent
 
How to have difficult conversations
How to have difficult conversations How to have difficult conversations
How to have difficult conversations
 
Introduction to Data Science
Introduction to Data ScienceIntroduction to Data Science
Introduction to Data Science
 
Time Management & Productivity - Best Practices
Time Management & Productivity -  Best PracticesTime Management & Productivity -  Best Practices
Time Management & Productivity - Best Practices
 
The six step guide to practical project management
The six step guide to practical project managementThe six step guide to practical project management
The six step guide to practical project management
 
Beginners Guide to TikTok for Search - Rachel Pearson - We are Tilt __ Bright...
Beginners Guide to TikTok for Search - Rachel Pearson - We are Tilt __ Bright...Beginners Guide to TikTok for Search - Rachel Pearson - We are Tilt __ Bright...
Beginners Guide to TikTok for Search - Rachel Pearson - We are Tilt __ Bright...
 
Unlocking the Power of ChatGPT and AI in Testing - A Real-World Look, present...
Unlocking the Power of ChatGPT and AI in Testing - A Real-World Look, present...Unlocking the Power of ChatGPT and AI in Testing - A Real-World Look, present...
Unlocking the Power of ChatGPT and AI in Testing - A Real-World Look, present...
 
12 Ways to Increase Your Influence at Work
12 Ways to Increase Your Influence at Work12 Ways to Increase Your Influence at Work
12 Ways to Increase Your Influence at Work
 
ChatGPT webinar slides
ChatGPT webinar slidesChatGPT webinar slides
ChatGPT webinar slides
 
More than Just Lines on a Map: Best Practices for U.S Bike Routes
More than Just Lines on a Map: Best Practices for U.S Bike RoutesMore than Just Lines on a Map: Best Practices for U.S Bike Routes
More than Just Lines on a Map: Best Practices for U.S Bike Routes
 
Ride the Storm: Navigating Through Unstable Periods / Katerina Rudko (Belka G...
Ride the Storm: Navigating Through Unstable Periods / Katerina Rudko (Belka G...Ride the Storm: Navigating Through Unstable Periods / Katerina Rudko (Belka G...
Ride the Storm: Navigating Through Unstable Periods / Katerina Rudko (Belka G...
 
Barbie - Brand Strategy Presentation
Barbie - Brand Strategy PresentationBarbie - Brand Strategy Presentation
Barbie - Brand Strategy Presentation
 
Good Stuff Happens in 1:1 Meetings: Why you need them and how to do them well
Good Stuff Happens in 1:1 Meetings: Why you need them and how to do them wellGood Stuff Happens in 1:1 Meetings: Why you need them and how to do them well
Good Stuff Happens in 1:1 Meetings: Why you need them and how to do them well
 
Introduction to C Programming Language
Introduction to C Programming LanguageIntroduction to C Programming Language
Introduction to C Programming Language
 

Develop & publish “5 star” AppExchange app

  • 1. Develop & publish “5 star” AppExchange app
  • 2. 2 I’m Chirag Mehta I am here because I love to share! Namaste! You can find me at @chiragmehta84 @chiragmehta84 @chiragmehta84 chirag@satrangtech.com
  • 3. Idea!!!!! We all go one, isn’t :) 3
  • 4. Idea to Execution ❖ Believe in Yourself ❖ Create Your Own Personal Board of Advisors ❖ Embrace Risk as Your Best Friend ❖ Be Extremely Patient ❖ Learn How to Sell Your Vision ❖ Connect the Dots Along the Way ❖ Be Passionate With Your Pursuit ❖ Be Purposeful ❖ Always Make the Idea Better Reference : http://bit.ly/2fbfBuH 4
  • 5. ” To me, ideas are worth nothing unless executed. They are just a multiplier. Execution is worth millions. 5
  • 6. Develop Most essential we consider, but is least time consuming part of app building. 6
  • 7. Development Life Cycle Development Do development. QA Sanity and Regression testing. Packaging Release beta and major package versions. 7
  • 8. ” if everyone is moving forward together then success takes care of itself. 8
  • 10. Security Review Force.com Security Scanner Scan and fix vulnerabilities Read more @ https://security.secure.for ce.com/sourcescanner/ Web Application Scanner (ZAP) External Integrations Read more @ https://security.secure.for ce.com/security/tools/web app/burpabout Best Practices Adhere and follow best practices. 10
  • 11. Read more @ https://security.secure.force.com/security/tools/forcecom/scannerhelp Add Topics : Retire.js, False +ve/-ve, Support Case, Security Office Hours etc Quality Profile: The Force.com Security Source Scanner will detect the following common Apex coding and design issues: ● DML statements inside loops ● SOQL/SOSL inside loops ● Hardcoding Trigger.new[0] ● Hardcoding Trigger.old[0] ● Queries with no Where clause or no LIMIT clause ● Not bulkifying apex methods ● Async (@future) methods inside loops ● Hardcoding IDs ● Multiple triggers on same object ● Static Resource referencing ● Multiple Visualforce forms in the same page ● Test methods without assert Additional Info Security Profile: The scanner will help to detect the following security vulnerability types: ● Cross Site Scripting (reflected, stored, and DOM based) ● SOQL/SOSL Injection ● Access Control Issues (Sharing, FLS) ● Cross site request forgery attacks ● Arbitrary Redirects ● Overly permissive postMessage targets 11
  • 12. ” Security review is not a burden, it's a necessity to ensure customer success. 12
  • 14. Support App Notes - Configuration Guides - Release Notes - Videos - Tutorial - FAQ’s Reach out - Customers - Seek feedback - ISV Org 14 Updates - Listen to customer - Make new releases - Address customer requirements Ticket/Case - Support System - Round the clock support - Instant replies
  • 15. ” Delivery Management is more important than Project Management. 15
  • 16. Resources Zap Scanner : https://security.secure.force.com/security/tools/webapp/burpabout Force.com Scanner : https://security.secure.force.com/sourcescanner/ Force.com Scanner Help (FAQs) : https://security.secure.force.com/security/tools/forcecom/scannerhelp ISV Security Review (Trailhead Module) : https://trailhead.salesforce.com/en/modules/isv_security_review Build Apps as an AppExchange Partner (Trailhead Trail) : https://trailhead.salesforce.com/en/trails/isv_developer_beginner AppExchange : https://appexchange.salesforce.com/ Security Office Hours : https://security.secure.force.com/security/contact/ohours Reite JS : Retire.js 16
  • 18. 18 THANKS! Any questions? You can find me at @chiragmehta84 @chiragmehta84 @chiragmehta84 chirag@satrangtech.com