Is penetration testing performed during security review?

We submitted our zoom app, and now it’s in the Security Review step.
Today our system received many malicious requests which seemed for penetration testing. Also, the requests were associated with the account created for the zoom app review process. However, the documentation about the review process mentions that We will not conduct any load testing, intrusive penetration test, and/or DoS/DDoS.

Could you please check whether security review actually includes penetration testing or not?

Doc URL: Submission review

Thank you,

Hi @yasman ,

Let me look into this further and get back to your asap. Check your private messages.