Nextjs Guideline: Security — Sanitize user input. Description: Never trust user input. Do: Escape sanitize validate all input. Don't: Direct interpolation of user data. Good Example: DOMPurify.sanitize(userInput). Bad Example: dangerouslySetInnerHTML={{ __html: userInput }}. Severity: High. Docs: .