Input Validation & Sanitization Auditor Prevent injection attacks through proper input handling. XSS Prevention SQL Injection Prevention Input Validation Schema Output Checklist - [ ] XSS prevention (escaping, CSP) - [ ] SQL injection prevention (parameterized queries) - [ ] Command injection prevention - [ ] Input validation schemas - [ ] Output encoding - [ ] Sanitization libraries - [ ] Security tests ENDFILE ---