How does this skill help with Django production deployments?

It provides a standardized production settings template covering SSL redirects, HSTS, secure cookies, and critical security headers like X-Frame-Options.

Does it support custom authentication models?

Yes, the skill includes patterns for implementing custom user models using email as the primary identifier and switching to secure hashers like Argon2.

Does it cover file upload security?

The skill provides validation logic for file extensions and sizes, along with recommendations for secure file storage in production environments.

Is security for REST APIs included?

Yes, it covers API-specific security measures such as rate limiting (throttling) and custom permission logic for frameworks like Django REST Framework.

Can this skill help prevent SQL injection?

It provides clear 'Good' vs 'Bad' examples of Django ORM usage and raw SQL parameterization to ensure all user input is safely handled.

Django Security Best Practices

Name: Django Security Best Practices
Author: saar120

bysaar120

0•

セキュリティとテスト

Hardens Django applications against common vulnerabilities using industry-standard security protocols and production-ready configurations.

The Django Security skill provides comprehensive guidance for developers looking to secure their web applications from development through to production. It offers standardized implementation patterns for critical security features including robust authentication systems, custom user models, and complex Role-Based Access Control (RBAC). By following these curated best practices, users can effectively mitigate risks like SQL injection, Cross-Site Scripting (XSS), and Cross-Site Request Forgery (CSRF) while ensuring their production environment is properly configured with secure headers and hardened cookie settings.

主な機能

01Comprehensive authorization strategies using RBAC and custom permission classes

02Secure file upload validation and API rate limiting implementation

030 GitHub stars

04Advanced authentication patterns including custom user models and Argon2 hashing

05Production-ready security header and cookie configurations

06Defensive coding patterns to prevent SQL injection and XSS attacks

ユースケース

01Preparing a Django application for production deployment with hardened settings

02Implementing complex multi-role permission systems and custom user models

03Performing security audits on existing Django codebases to find vulnerabilities

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add saar120/skillgate-registry django-security

For use in Claude.ai and ChatGPT

主な機能

01Comprehensive authorization strategies using RBAC and custom permission classes

02Secure file upload validation and API rate limiting implementation

030 GitHub stars

04Advanced authentication patterns including custom user models and Argon2 hashing

05Production-ready security header and cookie configurations

06Defensive coding patterns to prevent SQL injection and XSS attacks

ユースケース

01Preparing a Django application for production deployment with hardened settings

02Implementing complex multi-role permission systems and custom user models

03Performing security audits on existing Django codebases to find vulnerabilities