Every release of Privia is put through a rigorous test to verify that Cross-Site Scripting and SQL Injection vulnerabilities are blocked by the application. The tests conform to OWASP best practices and ensure that a Privia server can safely be exposed to the internet without opening up vectors for attack.