Avoid unescaped Laravel Blade output from request or model data
Raw Blade rendering (`{!! !!}`) should not directly render request, model, or translated user content.
#Metadata
#Why it matters
Unescaped template output can enable stored or reflected XSS when user-controlled values are rendered as HTML.
#Remediation
Prefer escaped Blade output (`{{ }}`) and sanitizer wrappers before rendering user-influenced HTML.
#Repository path
The generated metadata points to critiq-rules/libs/rules/catalog/rules/php/php.security.laravel-unsafe-blade-output.rule.yaml.