How does it help prevent SQL Injection?

It demonstrates how to use the Django ORM safely and provides patterns for using parameters with raw SQL to prevent malicious input execution.

Is the documentation provided in Japanese?

Yes, this skill is part of the docs-ja-JP plugin and provides comprehensive security guidelines and code comments in Japanese.

Does this skill support Django Rest Framework (DRF)?

Yes, it includes specific security patterns for DRF, including token/JWT authentication, custom permissions, and API throttling.

Can this help me configure my production settings.py?

Absolutely. It provides a standardized template for production settings, covering HSTS, secure cookies, and environment variable management for secret keys.

Does it cover secure file handling?

Yes, it includes validation patterns for file extensions and sizes, as well as recommendations for secure media storage.

Django Security Best Practices (JA)

Name: Django Security Best Practices (JA)
Author: unju-ai

byunju-ai

0•

Seguridad y Pruebas

Provides comprehensive Japanese-language security guidelines and implementation patterns for hardening Django web applications.

This skill acts as an expert security consultant for Django development, offering localized Japanese documentation and code patterns. It covers essential security topics including production-grade settings, custom user model implementation, Role-Based Access Control (RBAC), and robust protection against common web vulnerabilities like SQL injection, XSS, and CSRF. It is particularly useful for developers moving from development to production or those needing to implement complex authorization logic in both standard Django views and Django Rest Framework (DRF) APIs.

Características Principales

01SQL injection and XSS prevention techniques using Django ORM and template filters.

020 GitHub stars

03Production-ready configuration templates for SSL, HSTS, and secure cookies.

04API-specific security including rate limiting (throttling) and JWT/Token authentication patterns.

05Custom user model and advanced password hashing (Argon2/BCrypt) implementations.

06Detailed CSRF protection strategies for both standard forms and AJAX/Fetch requests.

Casos de Uso

01Implementing custom permission mixins and RBAC for complex user hierarchies.

02Auditing code for security vulnerabilities and refactoring unsafe raw SQL or template rendering.

03Hardening a Django project's settings.py for a secure production deployment.

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add unju-ai/ecc django-security

For use in Claude.ai and ChatGPT