I talked to a client that would like to stand up a public instance of Forms in their DMZ and they want to research the situation for potential risks that may bring. We would like to see if there is any official documentation that Laserfiche has that will support the notion that Forms is a secure application and has built-in safeguards against attacks such as SQL Injection, Cross-Site Scripting, etc. Since it is a webapp and connecting to a SQL database, we are curious if it has any features for web application security such as input sanitation, list of invalid characters, etc.  Thanks.