diff --git a/src/lib/security/sanitizer.test.ts b/src/lib/security/sanitizer.test.ts
new file mode 100644
index 0000000..7a42f4b
--- /dev/null
+++ b/src/lib/security/sanitizer.test.ts
@@ -0,0 +1,39 @@
+import { sanitizeInput, sanitizeFormData, detectMaliciousContent } from './sanitizer';
+
+describe('Input Sanitization', () => {
+ test('should remove XSS attempts', () => {
+ const malicious = 'Hello';
+ const sanitized = sanitizeInput(malicious);
+ expect(sanitized).not.toContain('John',
+ email: 'test@example.com',
+ message: 'Click http://evil.com',
+ };
+ const sanitized = sanitizeFormData(formData);
+ expect(sanitized.name).not.toContain('