Rain Framework implements the security at many levels.

• The input are sanitized with the input_filter function, which can be used also for validating the input.
• Database queries are managed by the DB class, that use the PDO prepared method to sanitize the varaibles from SQL injection.
• The template engine, has a sandbox, which enables you to loads template from untrusted source, so your designers team can also be an outsource.