automatically escape text

We need to come up with something clever so that any text (even from streams) is escaped automatically. Possibly some kind of extra property on streams to say they are html safe which would let them pass through.

An easier option would be that we never escape streams but any text stuck directly in the children list would be escaped. Could probably provide a pull-escape-html helper to solve the other case.