diff --git a/change/@microsoft-teams-js-81b620f2-8af1-4450-89b0-20600bac843e.json b/change/@microsoft-teams-js-81b620f2-8af1-4450-89b0-20600bac843e.json
new file mode 100644
index 0000000000..080bd8793a
--- /dev/null
+++ b/change/@microsoft-teams-js-81b620f2-8af1-4450-89b0-20600bac843e.json
@@ -0,0 +1,7 @@
+{
+  "type": "patch",
+  "comment": "Updated internal app id validation",
+  "packageName": "@microsoft/teams-js",
+  "email": "36546967+AE-MS@users.noreply.github.com",
+  "dependentChangeType": "patch"
+}
diff --git a/change/@microsoft-teams-js-b1e62451-f7ad-44d0-b700-d5fe996761f9.json b/change/@microsoft-teams-js-b1e62451-f7ad-44d0-b700-d5fe996761f9.json
new file mode 100644
index 0000000000..3fc6401019
--- /dev/null
+++ b/change/@microsoft-teams-js-b1e62451-f7ad-44d0-b700-d5fe996761f9.json
@@ -0,0 +1,7 @@
+{
+  "type": "minor",
+  "comment": "Added logging for current teamsjs instance and timestamps",
+  "packageName": "@microsoft/teams-js",
+  "email": "36546967+AE-MS@users.noreply.github.com",
+  "dependentChangeType": "patch"
+}
diff --git a/packages/teams-js/src/internal/appIdValidation.ts b/packages/teams-js/src/internal/appIdValidation.ts
index 028b993a03..d08ac734a2 100644
--- a/packages/teams-js/src/internal/appIdValidation.ts
+++ b/packages/teams-js/src/internal/appIdValidation.ts
@@ -1,3 +1,5 @@
+import { hasScriptTags } from './utils';
+
 /**
  * This function can be used to validate if a string is a "valid" app id.
  * Valid is a relative term, in this case. Truly valid app ids are UUIDs as documented in the schema:
@@ -10,7 +12,7 @@
  * @throws Error with a message describing the exact validation violation
  */
 export function validateStringAsAppId(potentialAppId: string): void {
-  if (doesStringContainScriptTags(potentialAppId)) {
+  if (hasScriptTags(potentialAppId)) {
     throw new Error(`Potential app id (${potentialAppId}) is invalid; it contains script tags.`);
   }
 
@@ -25,11 +27,6 @@ export function validateStringAsAppId(potentialAppId: string): void {
   }
 }
 
-export function doesStringContainScriptTags(str: string): boolean {
-  const scriptRegex = /<script[^>]*>[\s\S]*?<\/script[^>]*>/gi;
-  return scriptRegex.test(str);
-}
-
 export const minimumValidAppIdLength = 4;
 export const maximumValidAppIdLength = 256;
 
diff --git a/packages/teams-js/src/internal/telemetry.ts b/packages/teams-js/src/internal/telemetry.ts
index 87a49abde7..2bcbc4172b 100644
--- a/packages/teams-js/src/internal/telemetry.ts
+++ b/packages/teams-js/src/internal/telemetry.ts
@@ -1,5 +1,17 @@
 import { debug as registerLogger, Debugger } from 'debug';
 
+import { UUID } from './uuidObject';
+
+// Each teamsjs instance gets a unique identifier that will be prepended to every log statement
+export const teamsJsInstanceIdentifier = new UUID();
+
+// Every log statement will get prepended with the teamsJsInstanceIdentifier and a timestamp
+const originalFormatArgsFunction = registerLogger.formatArgs;
+registerLogger.formatArgs = function (args) {
+  args[0] = `(${new Date().toISOString()}): ${args[0]} [${teamsJsInstanceIdentifier.toString()}]`;
+  originalFormatArgsFunction.call(this, args);
+};
+
 const topLevelLogger = registerLogger('teamsJs');
 
 /**
diff --git a/packages/teams-js/src/internal/utils.ts b/packages/teams-js/src/internal/utils.ts
index f3f460803b..2eb373e4c1 100644
--- a/packages/teams-js/src/internal/utils.ts
+++ b/packages/teams-js/src/internal/utils.ts
@@ -460,43 +460,19 @@ export function fullyQualifyUrlString(fullOrRelativePath: string): URL {
 }
 
 /**
- * The hasScriptTags function first decodes any HTML entities in the input string using the decodeHTMLEntities function.
- * It then tries to decode the result as a URI component. If the URI decoding fails (which would throw an error), it assumes that the input was not encoded and uses the original input.
- * Next, it defines a regular expression scriptRegex that matches any string that starts with <script (followed by any characters), then has any characters (including newlines),
- * and ends with </script> (preceded by any characters).
- * Finally, it uses the test method to check if the decoded input matches this regular expression. The function returns true if a match is found and false otherwise.
- * @param input URL converted to string to pattern match
+ * Detects if there are any script tags in a given string, even if they are Uri encoded or encoded as HTML entities.
+ * @param input string to test for script tags
  * @returns true if the input string contains a script tag, false otherwise
  */
-function hasScriptTags(input: string): boolean {
-  let decodedInput;
-  try {
-    const decodedHTMLInput = decodeHTMLEntities(input);
-    decodedInput = decodeURIComponent(decodedHTMLInput);
-  } catch (e) {
-    // input was not encoded, use it as is
-    decodedInput = input;
-  }
-  const scriptRegex = /<script[^>]*>[\s\S]*?<\/script[^>]*>/gi;
-  return scriptRegex.test(decodedInput);
-}
+export function hasScriptTags(input: string): boolean {
+  const openingScriptTagRegex = /<script[^>]*>|&lt;script[^&]*&gt;|%3Cscript[^%]*%3E/gi;
+  const closingScriptTagRegex = /<\/script[^>]*>|&lt;\/script[^&]*&gt;|%3C\/script[^%]*%3E/gi;
 
-/**
- * The decodeHTMLEntities function replaces HTML entities in the input string with their corresponding characters.
- */
-function decodeHTMLEntities(input: string): string {
-  const entityMap = new Map<string, string>([
-    ['&lt;', '<'],
-    ['&gt;', '>'],
-    ['&amp;', '&'],
-    ['&quot;', '"'],
-    ['&#39;', "'"],
-    ['&#x2F;', '/'],
-  ]);
-  entityMap.forEach((value, key) => {
-    input = input.replace(new RegExp(key, 'gi'), value);
-  });
-  return input;
+  const openingOrClosingScriptTagRegex = new RegExp(
+    `${openingScriptTagRegex.source}|${closingScriptTagRegex.source}`,
+    'gi',
+  );
+  return openingOrClosingScriptTagRegex.test(input);
 }
 
 function isIdLengthValid(id: string): boolean {
diff --git a/packages/teams-js/src/private/externalAppAuthentication.ts b/packages/teams-js/src/private/externalAppAuthentication.ts
index eba3e95b84..96a79803f3 100644
--- a/packages/teams-js/src/private/externalAppAuthentication.ts
+++ b/packages/teams-js/src/private/externalAppAuthentication.ts
@@ -2,6 +2,7 @@ import { sendMessageToParentAsync } from '../internal/communication';
 import { ensureInitialized } from '../internal/internalAPIs';
 import { ApiName, ApiVersionNumber, getApiVersionTag } from '../internal/telemetry';
 import { validateId, validateUrl } from '../internal/utils';
+import { AppId } from '../public';
 import { errorNotSupportedOnPlatform, FrameContexts } from '../public/constants';
 import { runtime } from '../public/runtime';
 
@@ -351,7 +352,7 @@ export namespace externalAppAuthentication {
     if (!isSupported()) {
       throw errorNotSupportedOnPlatform;
     }
-    validateId(appId, new Error('App id is not valid.'));
+    const typeSafeAppId: AppId = new AppId(appId);
     validateOriginalRequestInfo(originalRequestInfo);
 
     // Ask the parent window to open an authentication window with the parameters provided by the caller.
@@ -362,7 +363,7 @@ export namespace externalAppAuthentication {
       ),
       'externalAppAuthentication.authenticateAndResendRequest',
       [
-        appId,
+        typeSafeAppId.toString(),
         originalRequestInfo,
         authenticateParameters.url.href,
         authenticateParameters.width,
@@ -395,14 +396,15 @@ export namespace externalAppAuthentication {
     if (!isSupported()) {
       throw errorNotSupportedOnPlatform;
     }
-    validateId(appId, new Error('App id is not valid.'));
+    const typeSafeAppId: AppId = new AppId(appId);
+
     return sendMessageToParentAsync(
       getApiVersionTag(
         externalAppAuthenticationTelemetryVersionNumber,
         ApiName.ExternalAppAuthentication_AuthenticateWithSSO,
       ),
       'externalAppAuthentication.authenticateWithSSO',
-      [appId, authTokenRequest.claims, authTokenRequest.silent],
+      [typeSafeAppId.toString(), authTokenRequest.claims, authTokenRequest.silent],
     ).then(([wasSuccessful, error]: [boolean, InvokeError]) => {
       if (!wasSuccessful) {
         throw error;
@@ -431,7 +433,7 @@ export namespace externalAppAuthentication {
     if (!isSupported()) {
       throw errorNotSupportedOnPlatform;
     }
-    validateId(appId, new Error('App id is not valid.'));
+    const typeSafeAppId: AppId = new AppId(appId);
 
     validateOriginalRequestInfo(originalRequestInfo);
 
@@ -441,7 +443,7 @@ export namespace externalAppAuthentication {
         ApiName.ExternalAppAuthentication_AuthenticateWithSSOAndResendRequest,
       ),
       'externalAppAuthentication.authenticateWithSSOAndResendRequest',
-      [appId, originalRequestInfo, authTokenRequest.claims, authTokenRequest.silent],
+      [typeSafeAppId.toString(), originalRequestInfo, authTokenRequest.claims, authTokenRequest.silent],
     ).then(([wasSuccessful, response]: [boolean, IInvokeResponse | InvokeErrorWrapper]) => {
       if (wasSuccessful && response.responseType != null) {
         return response as IInvokeResponse;
diff --git a/packages/teams-js/src/private/externalAppCardActions.ts b/packages/teams-js/src/private/externalAppCardActions.ts
index f71babe714..bdfaf0b2e6 100644
--- a/packages/teams-js/src/private/externalAppCardActions.ts
+++ b/packages/teams-js/src/private/externalAppCardActions.ts
@@ -1,7 +1,7 @@
 import { sendMessageToParentAsync } from '../internal/communication';
 import { ensureInitialized } from '../internal/internalAPIs';
 import { ApiName, ApiVersionNumber, getApiVersionTag } from '../internal/telemetry';
-import { validateId } from '../internal/utils';
+import { AppId } from '../public';
 import { errorNotSupportedOnPlatform, FrameContexts } from '../public/constants';
 import { runtime } from '../public/runtime';
 import { ExternalAppErrorCode } from './constants';
@@ -96,7 +96,7 @@ export namespace externalAppCardActions {
     if (!isSupported()) {
       throw errorNotSupportedOnPlatform;
     }
-    validateId(appId, new Error('App id is not valid.'));
+    const typeSafeAppId: AppId = new AppId(appId);
 
     return sendMessageToParentAsync<[boolean, ActionSubmitError]>(
       getApiVersionTag(
@@ -104,7 +104,7 @@ export namespace externalAppCardActions {
         ApiName.ExternalAppCardActions_ProcessActionSubmit,
       ),
       'externalAppCardActions.processActionSubmit',
-      [appId, actionSubmitPayload],
+      [typeSafeAppId.toString(), actionSubmitPayload],
     ).then(([wasSuccessful, error]: [boolean, ActionSubmitError]) => {
       if (!wasSuccessful) {
         throw error;
@@ -135,14 +135,14 @@ export namespace externalAppCardActions {
     if (!isSupported()) {
       throw errorNotSupportedOnPlatform;
     }
-    validateId(appId, new Error('App id is not valid.'));
+    const typeSafeAppId: AppId = new AppId(appId);
     return sendMessageToParentAsync<[ActionOpenUrlError, ActionOpenUrlType]>(
       getApiVersionTag(
         externalAppCardActionsTelemetryVersionNumber,
         ApiName.ExternalAppCardActions_ProcessActionOpenUrl,
       ),
       'externalAppCardActions.processActionOpenUrl',
-      [appId, url.href, fromElement],
+      [typeSafeAppId.toString(), url.href, fromElement],
     ).then(([error, response]: [ActionOpenUrlError, ActionOpenUrlType]) => {
       if (error) {
         throw error;
diff --git a/packages/teams-js/src/private/externalAppCommands.ts b/packages/teams-js/src/private/externalAppCommands.ts
index e8d0e44061..b78706abfc 100644
--- a/packages/teams-js/src/private/externalAppCommands.ts
+++ b/packages/teams-js/src/private/externalAppCommands.ts
@@ -1,7 +1,7 @@
 import { sendMessageToParentAsync } from '../internal/communication';
 import { ensureInitialized } from '../internal/internalAPIs';
 import { ApiName, ApiVersionNumber, getApiVersionTag } from '../internal/telemetry';
-import { validateId } from '../internal/utils';
+import { AppId } from '../public';
 import { errorNotSupportedOnPlatform, FrameContexts } from '../public/constants';
 import { runtime } from '../public/runtime';
 import { ExternalAppErrorCode } from './constants';
@@ -135,12 +135,12 @@ export namespace externalAppCommands {
     if (!isSupported()) {
       throw errorNotSupportedOnPlatform;
     }
-    validateId(appId, new Error('App id is not valid.'));
+    const typeSafeAppId: AppId = new AppId(appId);
 
     const [error, response] = await sendMessageToParentAsync<[ActionCommandError, IActionCommandResponse]>(
       getApiVersionTag(externalAppCommandsTelemetryVersionNumber, ApiName.ExternalAppCommands_ProcessActionCommands),
       ApiName.ExternalAppCommands_ProcessActionCommands,
-      [appId, commandId, extractedParameters],
+      [typeSafeAppId.toString(), commandId, extractedParameters],
     );
     if (error) {
       throw error;
diff --git a/packages/teams-js/src/public/app.ts b/packages/teams-js/src/public/app.ts
index 67d08dbfca..2db43d1aaa 100644
--- a/packages/teams-js/src/public/app.ts
+++ b/packages/teams-js/src/public/app.ts
@@ -750,17 +750,19 @@ export namespace app {
     const scriptUsageWarning =
       'Today, teamsjs can only be used from a single script or you may see undefined behavior. This log line is used to help detect cases where teamsjs is loaded multiple times -- it is always written. The presence of the log itself does not indicate a multi-load situation, but multiples of these log lines will. If you would like to use teamjs from more than one script at the same time, please open an issue at https://github.com/OfficeDev/microsoft-teams-library-js/issues';
     if (!currentScriptSrc || currentScriptSrc.length === 0) {
-      appLogger(
-        'teamsjs version %s is being used from a script tag embedded directly in your html. %s',
-        version,
-        scriptUsageWarning,
-      );
+      appLogger('teamsjs is being used from a script tag embedded directly in your html. %s', scriptUsageWarning);
     } else {
-      appLogger('teamsjs version %s is being used from %s. %s', version, currentScriptSrc, scriptUsageWarning);
+      appLogger('teamsjs is being used from %s. %s', currentScriptSrc, scriptUsageWarning);
     }
   }
 
-  // This is called right away to make sure that we capture which script is being executed correctly
+  // This is called right away to make sure that we capture which script is being executed and important stats about the current teamsjs instance
+  appLogger(
+    'teamsjs instance is version %s, starting at %s UTC (%s local)',
+    version,
+    new Date().toISOString(),
+    new Date().toLocaleString(),
+  );
   logWhereTeamsJsIsBeingUsed();
 
   /**
diff --git a/packages/teams-js/test/internal/appIdValidation.spec.ts b/packages/teams-js/test/internal/appIdValidation.spec.ts
index 9fdfe95088..f7b12940d6 100644
--- a/packages/teams-js/test/internal/appIdValidation.spec.ts
+++ b/packages/teams-js/test/internal/appIdValidation.spec.ts
@@ -1,6 +1,5 @@
 import {
   doesStringContainNonPrintableCharacters,
-  doesStringContainScriptTags,
   isStringWithinAppIdLengthLimits,
   maximumValidAppIdLength,
   minimumValidAppIdLength,
@@ -58,37 +57,6 @@ describe('isStringWithinAppIdLengthLimits', () => {
   });
 });
 
-describe('doesStringContainScriptTags', () => {
-  test('should return true for strings containing script tags', () => {
-    expect(doesStringContainScriptTags('<script>alert("Hello")</script>')).toBe(true);
-    expect(doesStringContainScriptTags('<script src="example.js"></script>')).toBe(true);
-    expect(doesStringContainScriptTags('<script type="text/javascript">console.log("test")</script>')).toBe(true);
-  });
-
-  test('should return false for strings without script tags', () => {
-    expect(doesStringContainScriptTags('This is a test string')).toBe(false);
-    expect(doesStringContainScriptTags('8e6523aa-97f9-49ad-8614-75cae22f6597')).toBe(false);
-    expect(doesStringContainScriptTags('com.microsoft.teamspace.tab.youtube')).toBe(false);
-    expect(doesStringContainScriptTags('<div>This is a div</div>')).toBe(false);
-    expect(doesStringContainScriptTags('<a href="example.com">Link</a>')).toBe(false);
-  });
-
-  test('should return true for strings with script tags containing newlines and spaces', () => {
-    expect(doesStringContainScriptTags('<script>\nalert("Hello")\n</script>')).toBe(true);
-    expect(doesStringContainScriptTags('<script> \n console.log("test") \n </script>')).toBe(true);
-  });
-
-  test('should return false for empty string', () => {
-    expect(doesStringContainScriptTags('')).toBe(false);
-  });
-
-  test('should return true for strings with multiple script tags', () => {
-    expect(doesStringContainScriptTags('<script>alert("Hello")</script><script>console.log("test")</script>')).toBe(
-      true,
-    );
-  });
-});
-
 // Since there are plenty of tests validating the individual validation functions, these tests are intentionally not as
 // comprehensive as those. It executes a few basic tests and also validates that the error messages thrown are as expected.
 describe('validateStringAsAppId', () => {
@@ -98,15 +66,15 @@ describe('validateStringAsAppId', () => {
   });
 
   test('should throw error with "script" in message for app id containing script tag', () => {
-    expect(() => validateStringAsAppId('<script>alert("Hello")</script>')).toThrowError(/script/);
+    expect(() => validateStringAsAppId('<script>alert("Hello")</script>')).toThrowError(/script/i);
   });
 
   test('should throw error with "length" in message for app id too long or too short', () => {
-    expect(() => validateStringAsAppId('a')).toThrowError(/length/);
-    expect(() => validateStringAsAppId('a'.repeat(maximumValidAppIdLength))).toThrowError(/length/);
+    expect(() => validateStringAsAppId('a')).toThrowError(/length/i);
+    expect(() => validateStringAsAppId('a'.repeat(maximumValidAppIdLength))).toThrowError(/length/i);
   });
 
   test('should throw error with "printable" in message for app id containing non-printable characters', () => {
-    expect(() => validateStringAsAppId('hello\u0080world')).toThrowError(/printable/);
+    expect(() => validateStringAsAppId('hello\u0080world')).toThrowError(/printable/i);
   });
 });
diff --git a/packages/teams-js/test/internal/utils.spec.ts b/packages/teams-js/test/internal/utils.spec.ts
index 740745de14..f36024e895 100644
--- a/packages/teams-js/test/internal/utils.spec.ts
+++ b/packages/teams-js/test/internal/utils.spec.ts
@@ -3,6 +3,7 @@ import {
   compareSDKVersions,
   createTeamsAppLink,
   getBase64StringFromBlob,
+  hasScriptTags,
   validateId,
   validateUrl,
   validateUuid,
@@ -367,6 +368,105 @@ describe('utils', () => {
     });
   });
 
+  describe('hasScriptTags', () => {
+    test('detects plain opening <script> tag', () => {
+      expect(hasScriptTags('<script>alert("XSS")</script>')).toBe(true);
+    });
+
+    test('detects HTML entity encoded opening <script> tag', () => {
+      expect(hasScriptTags('&lt;script&gt;alert("XSS")&lt;/script&gt;')).toBe(true);
+    });
+
+    test('detects URI encoded opening <script> tag', () => {
+      expect(hasScriptTags('%3Cscript%3Ealert("XSS")%3C/script%3E')).toBe(true);
+    });
+
+    test('detects plain closing </script> tag', () => {
+      expect(hasScriptTags('</script>')).toBe(true);
+    });
+
+    test('detects HTML entity encoded closing </script> tag', () => {
+      expect(hasScriptTags('&lt;/script&gt;')).toBe(true);
+    });
+
+    test('detects URI encoded closing </script> tag', () => {
+      expect(hasScriptTags('%3C/script%3E')).toBe(true);
+    });
+
+    test('returns false for strings without <script> tags', () => {
+      expect(hasScriptTags('<div>no script here</div>')).toBe(false);
+    });
+
+    test('detects mixed content with <script> tags', () => {
+      expect(hasScriptTags('<div><script>alert("XSS")</script></div>')).toBe(true);
+    });
+
+    test('returns false for empty string', () => {
+      expect(hasScriptTags('')).toBe(false);
+    });
+
+    test('detects multiple <script> tags', () => {
+      expect(hasScriptTags('<script>alert("XSS")</script><script>alert("XSS2")</script>')).toBe(true);
+    });
+
+    test('detects <script> tags with attributes', () => {
+      expect(hasScriptTags('<script type="text/javascript">alert("XSS")</script>')).toBe(true);
+      expect(hasScriptTags('<script src="example.js"></script>')).toBe(true);
+      expect(hasScriptTags('<script async defer>alert("XSS")</script>')).toBe(true);
+    });
+
+    test('detects HTML entity encoded <script> tag with attributes', () => {
+      expect(hasScriptTags('&lt;script type="text/javascript"&gt;alert("XSS")&lt;/script&gt;')).toBe(true);
+      expect(hasScriptTags('&lt;script src="example.js"&gt;&lt;/script&gt;')).toBe(true);
+    });
+
+    test('detects URI encoded <script> tag with attributes', () => {
+      expect(hasScriptTags('%3Cscript%20type=%22text/javascript%22%3Ealert("XSS")%3C/script%3E')).toBe(true);
+      expect(hasScriptTags('%3Cscript%20src=%22example.js%22%3E%3C/script%3E')).toBe(true);
+    });
+
+    test('detects <script> tags with spaces', () => {
+      expect(hasScriptTags('<script >alert("XSS")</script >')).toBe(true);
+    });
+
+    test('detects plain opening <script> tag with URI encoded closing tag', () => {
+      expect(hasScriptTags('<script>alert("XSS")%3C/script%3E')).toBe(true);
+    });
+
+    test('detects URI encoded opening <script> tag with plain closing tag', () => {
+      expect(hasScriptTags('%3Cscript%3Ealert("XSS")</script>')).toBe(true);
+    });
+
+    test('detects plain opening <script> tag with HTML entity encoded closing tag', () => {
+      expect(hasScriptTags('<script>alert("XSS")&lt;/script&gt;')).toBe(true);
+    });
+
+    test('detects HTML entity encoded opening <script> tag with plain closing tag', () => {
+      expect(hasScriptTags('&lt;script&gt;alert("XSS")</script>')).toBe(true);
+    });
+
+    test('detects nested <script> tags', () => {
+      expect(hasScriptTags('<script><script>alert("nested")</script></script>')).toBe(true);
+    });
+
+    test('detects <script> tags with unusual but valid attributes', () => {
+      expect(hasScriptTags('<script data-custom="value">alert("XSS")</script>')).toBe(true);
+      expect(hasScriptTags('<script nonce="random">alert("XSS")</script>')).toBe(true);
+    });
+
+    test('detects <script> tags with different casing', () => {
+      expect(hasScriptTags('<SCRIPT>alert("XSS")</SCRIPT>')).toBe(true);
+      expect(hasScriptTags('&lt;SCRIPT&gt;alert("XSS")&lt;/SCRIPT&gt;')).toBe(true);
+      expect(hasScriptTags('%3CSCRIPT%3Ealert("XSS")%3C/SCRIPT%3E')).toBe(true);
+    });
+
+    test('detects mixed casing <script> tags', () => {
+      expect(hasScriptTags('<sCRipT>alert("XSS")</sCRipT>')).toBe(true);
+      expect(hasScriptTags('&lt;sCRipT&gt;alert("XSS")&lt;/sCRipT&gt;')).toBe(true);
+      expect(hasScriptTags('%3CsCRipT%3Ealert("XSS")%3C/sCRipT%3E')).toBe(true);
+    });
+  });
+
   describe('UUID class tests', () => {
     describe('validateUuid', () => {
       it('should throw error when id is undefined', async () => {
diff --git a/packages/teams-js/test/private/externalAppAuthentication.spec.ts b/packages/teams-js/test/private/externalAppAuthentication.spec.ts
index 0802b822ad..ccd2ebc89c 100644
--- a/packages/teams-js/test/private/externalAppAuthentication.spec.ts
+++ b/packages/teams-js/test/private/externalAppAuthentication.spec.ts
@@ -147,46 +147,43 @@ describe('externalAppAuthentication', () => {
           expect.assertions(1);
           await utils.initializeWithContext(frameContext);
           utils.setRuntimeConfig({ apiVersion: 2, supports: { externalAppAuthentication: {} } });
-          const invalidAppId = 'invalidAppIdwith<script>alert(1)</script>';
-          try {
-            await externalAppAuthentication.authenticateAndResendRequest(
-              invalidAppId,
-              testAuthRequest,
-              testOriginalRequest,
-            );
-          } catch (e) {
-            expect(e).toEqual(new Error('App id is not valid.'));
-          }
-        });
-        it(`should throw error on invalid app ID if it contains non printabe ASCII characters with context - ${frameContext}`, async () => {
+          const invalidAppId = 'invalidAppIdWith<script>alert(1)</script>';
+          await expect(
+            async () =>
+              await externalAppAuthentication.authenticateAndResendRequest(
+                invalidAppId,
+                testAuthRequest,
+                testOriginalRequest,
+              ),
+          ).rejects.toThrowError(/script/i);
+        });
+        it(`should throw error on invalid app ID if it contains non printable ASCII characters with context - ${frameContext}`, async () => {
           expect.assertions(1);
           await utils.initializeWithContext(frameContext);
           utils.setRuntimeConfig({ apiVersion: 2, supports: { externalAppAuthentication: {} } });
           const invalidAppId = 'appId\u0000';
-          try {
-            await externalAppAuthentication.authenticateAndResendRequest(
-              invalidAppId,
-              testAuthRequest,
-              testOriginalRequest,
-            );
-          } catch (e) {
-            expect(e).toEqual(new Error('App id is not valid.'));
-          }
+          await expect(
+            async () =>
+              await externalAppAuthentication.authenticateAndResendRequest(
+                invalidAppId,
+                testAuthRequest,
+                testOriginalRequest,
+              ),
+          ).rejects.toThrowError(/characters/i);
         });
         it(`should throw error on invalid app ID if its size exceeds 256 characters with context - ${frameContext}`, async () => {
           expect.assertions(1);
           await utils.initializeWithContext(frameContext);
           utils.setRuntimeConfig({ apiVersion: 2, supports: { externalAppAuthentication: {} } });
           const invalidAppId = 'a'.repeat(257);
-          try {
-            await externalAppAuthentication.authenticateAndResendRequest(
-              invalidAppId,
-              testAuthRequest,
-              testOriginalRequest,
-            );
-          } catch (e) {
-            expect(e).toEqual(new Error('App id is not valid.'));
-          }
+          await expect(
+            async () =>
+              await externalAppAuthentication.authenticateAndResendRequest(
+                invalidAppId,
+                testAuthRequest,
+                testOriginalRequest,
+              ),
+          ).rejects.toThrowError(/length/i);
         });
         it(`should throw error on original request info command ID exceeds max size with context - ${frameContext}`, async () => {
           expect.assertions(1);
@@ -441,45 +438,42 @@ describe('externalAppAuthentication', () => {
           await utils.initializeWithContext(frameContext);
           utils.setRuntimeConfig({ apiVersion: 2, supports: { externalAppAuthentication: {} } });
           const invalidAppId = 'invalidAppIdwith<script>alert(1)</script>';
-          try {
-            await externalAppAuthentication.authenticateWithSSOAndResendRequest(
-              invalidAppId,
-              testAuthRequest,
-              testOriginalRequest,
-            );
-          } catch (e) {
-            expect(e).toEqual(new Error('App id is not valid.'));
-          }
-        });
-        it(`should throw error on invalid app ID if it contains non printabe ASCII characters with context - ${frameContext}`, async () => {
+          await expect(
+            async () =>
+              await externalAppAuthentication.authenticateWithSSOAndResendRequest(
+                invalidAppId,
+                testAuthRequest,
+                testOriginalRequest,
+              ),
+          ).rejects.toThrowError(/script/i);
+        });
+        it(`should throw error on invalid app ID if it contains non printable ASCII characters with context - ${frameContext}`, async () => {
           expect.assertions(1);
           await utils.initializeWithContext(frameContext);
           utils.setRuntimeConfig({ apiVersion: 2, supports: { externalAppAuthentication: {} } });
           const invalidAppId = 'appId\u0000';
-          try {
-            await externalAppAuthentication.authenticateWithSSOAndResendRequest(
-              invalidAppId,
-              testAuthRequest,
-              testOriginalRequest,
-            );
-          } catch (e) {
-            expect(e).toEqual(new Error('App id is not valid.'));
-          }
+          await expect(
+            async () =>
+              await externalAppAuthentication.authenticateWithSSOAndResendRequest(
+                invalidAppId,
+                testAuthRequest,
+                testOriginalRequest,
+              ),
+          ).rejects.toThrowError(/characters/i);
         });
         it(`should throw error on invalid app ID if if its size exceeds 256 characters with context - ${frameContext}`, async () => {
           expect.assertions(1);
           await utils.initializeWithContext(frameContext);
           utils.setRuntimeConfig({ apiVersion: 2, supports: { externalAppAuthentication: {} } });
           const invalidAppId = 'a'.repeat(257);
-          try {
-            await externalAppAuthentication.authenticateWithSSOAndResendRequest(
-              invalidAppId,
-              testAuthRequest,
-              testOriginalRequest,
-            );
-          } catch (e) {
-            expect(e).toEqual(new Error('App id is not valid.'));
-          }
+          await expect(
+            async () =>
+              await externalAppAuthentication.authenticateWithSSOAndResendRequest(
+                invalidAppId,
+                testAuthRequest,
+                testOriginalRequest,
+              ),
+          ).rejects.toThrowError(/length/i);
         });
 
         it(`should throw error on original request info command ID exceeds max size with context - ${frameContext}`, async () => {
@@ -870,11 +864,11 @@ describe('externalAppAuthentication', () => {
           expect.assertions(1);
           await utils.initializeWithContext(frameContext);
           utils.setRuntimeConfig({ apiVersion: 2, supports: { externalAppAuthentication: {} } });
-          const invalidsingInUrl = new URL('https://example.com?param=<script>alert("Hello, world!");</script>');
+          const invalidStringInUrl = new URL('https://example.com?param=<script>alert("Hello, world!");</script>');
           try {
             await externalAppAuthentication.authenticateWithPowerPlatformConnectorPlugins(
               titleId,
-              invalidsingInUrl,
+              invalidStringInUrl,
               testPPCWindowParameters,
             );
           } catch (e) {
@@ -886,11 +880,11 @@ describe('externalAppAuthentication', () => {
           await utils.initializeWithContext(frameContext);
           utils.setRuntimeConfig({ apiVersion: 2, supports: { externalAppAuthentication: {} } });
           // eslint-disable-next-line @microsoft/sdl/no-insecure-url
-          const invalidsingInUrl = new URL('http://pishingsite.com');
+          const invalidStringInUrl = new URL('http://adatum.com');
           try {
             await externalAppAuthentication.authenticateWithPowerPlatformConnectorPlugins(
               titleId,
-              invalidsingInUrl,
+              invalidStringInUrl,
               testPPCWindowParameters,
             );
           } catch (e) {
@@ -901,7 +895,7 @@ describe('externalAppAuthentication', () => {
           expect.assertions(1);
           await utils.initializeWithContext(frameContext);
           utils.setRuntimeConfig({ apiVersion: 2, supports: { externalAppAuthentication: {} } });
-          let dummyUrl = 'https://dummy.com?param=';
+          let dummyUrl = 'https://contoso.com?param=';
           while (dummyUrl.length < 2050) {
             dummyUrl += 'a';
           }
diff --git a/packages/teams-js/test/private/externalAppCardActions.spec.ts b/packages/teams-js/test/private/externalAppCardActions.spec.ts
index 4e55838ce4..2fd8a7ea85 100644
--- a/packages/teams-js/test/private/externalAppCardActions.spec.ts
+++ b/packages/teams-js/test/private/externalAppCardActions.spec.ts
@@ -82,34 +82,28 @@ describe('externalAppCardActions', () => {
           expect.assertions(1);
           await utils.initializeWithContext(frameContext);
           utils.setRuntimeConfig({ apiVersion: 2, supports: { externalAppCardActions: {} } });
-          const invalidAppId = 'invalidAppIdwith<script>alert(1)</script>';
-          try {
-            await externalAppCardActions.processActionSubmit(invalidAppId, testActionSubmitPayload);
-          } catch (e) {
-            expect(e).toEqual(new Error('App id is not valid.'));
-          }
+          const invalidAppId = 'invalidAppIdWith<script>alert(1)</script>';
+          await expect(
+            async () => await externalAppCardActions.processActionSubmit(invalidAppId, testActionSubmitPayload),
+          ).rejects.toThrowError(/script/i);
         });
-        it(`should throw error on invalid app ID if it contains non printabe ASCII characters. context - ${frameContext}`, async () => {
+        it(`should throw error on invalid app ID if it contains non printable ASCII characters. context - ${frameContext}`, async () => {
           expect.assertions(1);
           await utils.initializeWithContext(frameContext);
           utils.setRuntimeConfig({ apiVersion: 2, supports: { externalAppCardActions: {} } });
           const invalidAppId = 'appId\u0000';
-          try {
-            await externalAppCardActions.processActionSubmit(invalidAppId, testActionSubmitPayload);
-          } catch (e) {
-            expect(e).toEqual(new Error('App id is not valid.'));
-          }
+          await expect(
+            async () => await externalAppCardActions.processActionSubmit(invalidAppId, testActionSubmitPayload),
+          ).rejects.toThrowError(/characters/i);
         });
         it(`should throw error on invalid app ID if it its size exceeds 256 characters. context - ${frameContext}`, async () => {
           expect.assertions(1);
           await utils.initializeWithContext(frameContext);
           utils.setRuntimeConfig({ apiVersion: 2, supports: { externalAppCardActions: {} } });
           const invalidAppId = 'a'.repeat(257);
-          try {
-            await externalAppCardActions.processActionSubmit(invalidAppId, testActionSubmitPayload);
-          } catch (e) {
-            expect(e).toEqual(new Error('App id is not valid.'));
-          }
+          await expect(
+            async () => await externalAppCardActions.processActionSubmit(invalidAppId, testActionSubmitPayload),
+          ).rejects.toThrowError(/length/i);
         });
       } else {
         it(`should not allow calls from ${frameContext} context`, async () => {
@@ -188,33 +182,27 @@ describe('externalAppCardActions', () => {
           await utils.initializeWithContext(frameContext);
           utils.setRuntimeConfig({ apiVersion: 2, supports: { externalAppCardActions: {} } });
           const invalidAppId = 'invalidAppIdwith<script>alert(1)</script>';
-          try {
-            await externalAppCardActions.processActionOpenUrl(invalidAppId, testUrl);
-          } catch (e) {
-            expect(e).toEqual(new Error('App id is not valid.'));
-          }
+          await expect(
+            async () => await externalAppCardActions.processActionOpenUrl(invalidAppId, testUrl),
+          ).rejects.toThrowError(/script/i);
         });
-        it(`should throw error on invalid app ID if it contains non printabe ASCII characters with context - ${frameContext}`, async () => {
+        it(`should throw error on invalid app ID if it contains non printable ASCII characters with context - ${frameContext}`, async () => {
           expect.assertions(1);
           await utils.initializeWithContext(frameContext);
           utils.setRuntimeConfig({ apiVersion: 2, supports: { externalAppCardActions: {} } });
           const invalidAppId = 'appId\u0000';
-          try {
-            await externalAppCardActions.processActionOpenUrl(invalidAppId, testUrl);
-          } catch (e) {
-            expect(e).toEqual(new Error('App id is not valid.'));
-          }
+          await expect(
+            async () => await externalAppCardActions.processActionOpenUrl(invalidAppId, testUrl),
+          ).rejects.toThrowError(/characters/i);
         });
         it(`should throw error on invalid app ID if its size exceeds 256 characters with context - ${frameContext}`, async () => {
           expect.assertions(1);
           await utils.initializeWithContext(frameContext);
           utils.setRuntimeConfig({ apiVersion: 2, supports: { externalAppCardActions: {} } });
           const invalidAppId = 'a'.repeat(257);
-          try {
-            await externalAppCardActions.processActionOpenUrl(invalidAppId, testUrl);
-          } catch (e) {
-            expect(e).toEqual(new Error('App id is not valid.'));
-          }
+          await expect(
+            async () => await externalAppCardActions.processActionOpenUrl(invalidAppId, testUrl),
+          ).rejects.toThrowError(/length/i);
         });
       } else {
         it(`should not allow calls from ${frameContext} context`, async () => {
diff --git a/packages/teams-js/test/private/externalAppCommands.spec.ts b/packages/teams-js/test/private/externalAppCommands.spec.ts
index 0d90f94f3a..7f624fdc7b 100644
--- a/packages/teams-js/test/private/externalAppCommands.spec.ts
+++ b/packages/teams-js/test/private/externalAppCommands.spec.ts
@@ -97,34 +97,28 @@ describe('externalAppCommands', () => {
           expect.assertions(1);
           await utils.initializeWithContext(frameContext);
           utils.setRuntimeConfig({ apiVersion: 2, supports: { externalAppCommands: {} } });
-          const invalidAppId = 'invalidAppIdwith<script>alert(1)</script>';
-          try {
-            await externalAppCommands.processActionCommand(invalidAppId, mockCommandId, mockExtractedParam);
-          } catch (e) {
-            expect(e).toEqual(new Error('App id is not valid.'));
-          }
+          const invalidAppId = 'invalidAppIdWith<script>alert(1)</script>';
+          await expect(
+            async () => await externalAppCommands.processActionCommand(invalidAppId, mockCommandId, mockExtractedParam),
+          ).rejects.toThrowError(/script/i);
         });
-        it(`should throw error on invalid app ID if it contains non printabe ASCII characters with context - ${frameContext}`, async () => {
+        it(`should throw error on invalid app ID if it contains non printable ASCII characters with context - ${frameContext}`, async () => {
           expect.assertions(1);
           await utils.initializeWithContext(frameContext);
           utils.setRuntimeConfig({ apiVersion: 2, supports: { externalAppCommands: {} } });
           const invalidAppId = 'appId\u0000';
-          try {
-            await externalAppCommands.processActionCommand(invalidAppId, mockCommandId, mockExtractedParam);
-          } catch (e) {
-            expect(e).toEqual(new Error('App id is not valid.'));
-          }
+          await expect(
+            async () => await externalAppCommands.processActionCommand(invalidAppId, mockCommandId, mockExtractedParam),
+          ).rejects.toThrowError(/characters/i);
         });
         it(`should throw error on invalid app ID if its size exceeds 256 characters with context - ${frameContext}`, async () => {
           expect.assertions(1);
           await utils.initializeWithContext(frameContext);
           utils.setRuntimeConfig({ apiVersion: 2, supports: { externalAppCommands: {} } });
           const invalidAppId = 'a'.repeat(257);
-          try {
-            await externalAppCommands.processActionCommand(invalidAppId, mockCommandId, mockExtractedParam);
-          } catch (e) {
-            expect(e).toEqual(new Error('App id is not valid.'));
-          }
+          await expect(
+            async () => await externalAppCommands.processActionCommand(invalidAppId, mockCommandId, mockExtractedParam),
+          ).rejects.toThrowError(/length/i);
         });
       } else {
         it(`should not allow calls from ${frameContext} context`, async () => {
diff --git a/packages/teams-js/test/public/appId.spec.ts b/packages/teams-js/test/public/appId.spec.ts
index 7e2b5f22ab..16bd2a9e50 100644
--- a/packages/teams-js/test/public/appId.spec.ts
+++ b/packages/teams-js/test/public/appId.spec.ts
@@ -10,15 +10,15 @@ describe('doesStringContainNonPrintableCharacters', () => {
   });
 
   test('should throw error with "script" in message for app id containing script tag', () => {
-    expect(() => new AppId('<script>alert("Hello")</script>')).toThrowError(/script/);
+    expect(() => new AppId('<script>alert("Hello")</script>')).toThrowError(/script/i);
   });
 
   test('should throw error with "length" in message for app id too long or too short', () => {
-    expect(() => new AppId('a')).toThrowError(/length/);
-    expect(() => new AppId('a'.repeat(maximumValidAppIdLength))).toThrowError(/length/);
+    expect(() => new AppId('a')).toThrowError(/length/i);
+    expect(() => new AppId('a'.repeat(maximumValidAppIdLength))).toThrowError(/length/i);
   });
 
   test('should throw error with "printable" in message for app id containing non-printable characters', () => {
-    expect(() => new AppId('hello\u0080world')).toThrowError(/printable/);
+    expect(() => new AppId('hello\u0080world')).toThrowError(/printable/i);
   });
 });