the advanced security against XSS, CSRF, SQL injection, DDoS, Webshell (malicious code), weak configurations. there are extensions only available for sponsors. Generally, the default security is sufficient to you in our framework. so, you have to use it after did understand what is this.