What XSS protections are included?

The skill covers template escaping, safe string handling, and the implementation of security headers like Content-Security-Policy to block cross-site scripting attacks.

How does this skill help with Django production settings?

It provides a standardized template for production-ready settings including SECURE_SSL_REDIRECT, HSTS, and secure cookie configurations to ensure your app is deployment-ready.

Does it support custom user models and authentication?

Absolutely. It includes best practices for implementing AbstractUser, setting up email-based authentication, and configuring advanced password hashers like Argon2.

Can this skill help prevent SQL Injection in Django?

Yes, it provides patterns for using the Django ORM safely and demonstrates how to correctly parameterize raw SQL queries if they are absolutely necessary.

Django Security

Name: Django Security
Author: unju-ai

byunju-ai

0•

セキュリティとテスト

Implements production-grade security configurations and best practices for Django applications to mitigate common web vulnerabilities.

This skill provides a comprehensive framework for securing Django web applications throughout the development lifecycle. It guides developers through critical configurations for production environments, including secure header settings, robust authentication patterns, and custom user models. By offering implementation patterns for CSRF protection, SQL injection prevention, and XSS mitigation, it ensures that Claude can proactively identify and fix security gaps in Django codebases while following industry-standard security protocols like Argon2 hashing and Role-Based Access Control (RBAC).

主な機能

010 GitHub stars

02Automated SQL injection and XSS prevention patterns

03Hardened production settings and security header configurations

04Secure file upload validation and API rate limiting

05Advanced Role-Based Access Control (RBAC) and permission systems

06Custom user model implementation with secure password hashing

ユースケース

01Hardening a Django application's configuration before production deployment

02Auditing and refactoring legacy views to ensure CSRF and XSS protection

03Implementing a secure, email-based custom authentication system

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add unju-ai/ecc django-security

For use in Claude.ai and ChatGPT