Bummer! This is just a preview. You need to be signed in with an account to view the entire instruction.


Always Escape Outputs

Output is any data that leaves your application headed for another application or client. For example, adding a record to a database, or outputting information to a web page.

The goal of escaping output data is to represent data in a way that will not allow it to execute or get interpreted. Without escaping the output it's possible you could accidentally send malicious links to a user's ...