+ Start a Discussion
Ajay mishraAjay mishra 

Security Review not passed because JavaScript in URL?

JavaScript of any type is not allowed to run within the Salesforce.com application context. This includes JavaScript blocks within HomePageComponents, WebLinks, and all other components that are run under the Salesforce.com DOM.

I have Searched for this, some people have suggested below two options: 

1) Convince review team that its false positive as no one can manipulate ID field data
2) Fix the (false positive) Vulnerability by using Encoding function and submit the the package for review again.

I have not found and Encoding Function which support for GETRECORDIDS. Please Suggest If have any idea how to solve.

Thanks in advance