  Safety
Pagy handles the input of its own URL params safely, and assumes that all the configuration, options and arguments you set in your code are safe to use verbatim in its helpers.
WARNING!
If you use any other raw end-user input into your Pagy configuration, options, or arguments, you must sanitize or escape it first in your own code.