diff --git a/Useful-Functions-for-Plugin-and-Theme-Security.md b/Useful-Functions-for-Plugin-and-Theme-Security.md
index 1b5b59c..c4625ad 100644
--- a/Useful-Functions-for-Plugin-and-Theme-Security.md
+++ b/Useful-Functions-for-Plugin-and-Theme-Security.md
@@ -1,5 +1,8 @@
-The snippets below are a collection of PHP functions to help WordPress Plugin/Theme developer secure their code.
+WordPress has some sanitisation functions which should always be used, and correctly used. See https://developer.wordpress.org/themes/theme-security/data-sanitization-escaping/
 
+However, when reporting issues to vendor, we noticed that we were always seeing the same mistake/s (for example, checking an archive for malicious files after being extracted etc) for which there were no WordPress function for.
+
+The snippets below are a collection of PHP functions to help WordPress Plugin/Theme developers secure their code.
 
 ## is_url_local()