1. That’s a good post! Here’s how I describe the difference:

    Validation ensures that data are in the correct format/type, and within appropriate bounds.

    Sanitization ensures that data are safe, whether it is KSES-type scrubbing of malicious data, or escaping data appropriately for context.

  2. Too bad a comment of mine on that post has been waiting for approval for 5 days now ….

Comments are closed.