Worked on enhancing security for the DFE-Digital/login.dfe.help repository by implementing HTML sanitization and safe escaping for the environment banner. Focused on mitigating XSS vulnerabilities, the developer updated the layout to ensure that banner messages are properly sanitized and escaped, reducing the risk of malicious input while maintaining the intended user experience. Leveraged JavaScript and ejs to deliver these improvements, applying both backend and front end development skills with an emphasis on security best practices. The changes established a safer default for environment visibility across deployments, addressing a key security vector without disrupting the clarity or function of banner messaging.