We follow the OWASP Secure Coding Practices and otherwise rely on the extensive experience of our senior team members. In the event of a code change, we perform design reviews, code reviews, and security reviews. Every commit is inspected and reviewed by at least one other software engineer. We use thorough automated testing including unit tests and integration tests, as well as manual testing to ensure code quality and security.We also use automated third-party tools for static source code checks and vulnerability scanning. Our platform also undergoes regular penetration testing by an independent third party.