Why it matters
Output sanitization shapes delivery safety. Understanding shapes design.
Advertisement
The architecture
HTML escape / sanitize (DOMPurify equivalent).
PII scrub if unintended.
Citation formatting.
Length limits.
Advertisement
How it works end to end
OWASP Java HTML Sanitizer.
Content Security Policy on frontend.
PII scrub as backup.
Rich media safety.