How about input sanitization entirely on the client side? That's what a university did with its exam results database. I wonder how many times it got hacked.

@christophski I used to use it some time ago. It was to store cryptographically verifiable timestamps of the commits. Git has native support for cryptographically verifiable proof of authorship (using GPG and SSH keys), but not for timestamps. I used FreeTSA (https://freetsa.org/index_en.php) for this.