A bank regularly updates and maintains its online banking platform. They want to ensure that their web application is secure from known vulnerabilities before deployment. Which type of testing should they perform?