$username = $_GET['username'];

what would be the best way to make sure that nothing harmful lol would be able to get submitted?