This standard defines the responsibilities of the developers and of Web Services regarding the review of code prior to migration to production servers.
Applications that will be migrated to production should always have a code review completed prior to going live in production.
All application content that is being migrated to production should go through a code review. Code reviews are the responsibility of the developers. Upon request web services will schedule a vulnerability scan of the application.
The web infrastructure is an increasingly complex and distributed environment. Troubleshooting errors and problems may sometimes require that Web Services look at some application code. This is done at the discretion of Web Services. This is not a code review and should not be considered a standard practice.