From 44cfbcf302c945000736314741f0ca26ba2acc79 Mon Sep 17 00:00:00 2001
From: Sindre Sorhus <sindresorhus@gmail.com>
Date: Mon, 23 Aug 2021 17:11:33 +0200
Subject: [PATCH] Add note to the readme

---
 readme.md | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/readme.md b/readme.md
index f99f4f4..b9f8bd5 100644
--- a/readme.md
+++ b/readme.md
@@ -4,6 +4,8 @@
 
 Useful when you need to display, store, deduplicate, sort, compare, etc, URLs.
 
+**Note:** This package does **not** do URL sanitization. [Garbage in, garbage out.](https://en.wikipedia.org/wiki/Garbage_in,_garbage_out) If you use this in a server context and accept URLs as user input, it's up to you to protect against invalid URLs, [path traversal attacks](https://owasp.org/www-community/attacks/Path_Traversal), etc.
+
 ## Install
 
 ```