<div class="gmail_extra">Yes sir it needs to be e.g.</div><div class="gmail_extra"><br></div><div class="gmail_extra">$input['my_twitter_url'] = esc_url_raw($input['my_twitter_url']);</div><div class="gmail_extra">
<br></div><div class="gmail_extra">Emil<br><br><div class="gmail_quote">On Fri, Apr 27, 2012 at 12:16 PM, Kirk Wight <span dir="ltr"><<a href="mailto:kwight@kwight.ca" target="_blank">kwight@kwight.ca</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Hi all,<div><br></div><div>How lenient are others towards validation with theme options? I'm doing a review in which options are sanitized on input using wp_filter_nohtml_kses(), but not validated for their purpose - they're supposed to be social media URLs, but whatever the user enters is simply echoed out, whether it's a valid URL or not. Should it be sanitized on output with esc_url() also?..</div>
<div><br></div><div>Thanks, I'm a little out of my league with options stuff.</div><div><br></div><div>Thanks,</div><div>Kirk</div>
<br>_______________________________________________<br>
theme-reviewers mailing list<br>
<a href="mailto:theme-reviewers@lists.wordpress.org">theme-reviewers@lists.wordpress.org</a><br>
<a href="http://lists.wordpress.org/mailman/listinfo/theme-reviewers" target="_blank">http://lists.wordpress.org/mailman/listinfo/theme-reviewers</a><br>
<br></blockquote></div><br></div>