Can this skill assist with production deployments?

Yes, it includes comprehensive checklists for production-ready settings, including HSTS, SSL redirects, and secure cookie configurations (HTTPOnly, SameSite).

How does it handle file upload security?

It provides validation patterns for checking file extensions and sizes, along with architectural advice for secure media storage using isolated domains or cloud storage.

How does this skill help prevent SQL injection?

The skill provides guidance on using the Django ORM's built-in parameterization and demonstrates how to safely handle raw SQL queries using parameter escaping to prevent malicious input execution.

Does it support Django Rest Framework (DRF)?

Absolutely. It includes patterns for API-specific security such as custom permission classes, throttling/rate limiting, and secure token management.

Django Security Expert

Name: Django Security Expert
Author: flatrick

byflatrick

0•

Security & Testing

Hardens Django applications using industry-standard security configurations, authentication patterns, and vulnerability protection strategies.

The django-security skill provides Claude Code with deep domain expertise in securing Python web applications. It offers specialized guidance for configuring production-ready settings, implementing robust authentication and Role-Based Access Control (RBAC), and neutralizing common threats like SQL injection, XSS, and CSRF. By integrating this skill, developers can automate security audits, ensure secure file handling, and apply best practices for API rate limiting and session management, making it an essential tool for building and maintaining production-grade Django systems.

Key Features

010 GitHub stars

02Custom User Model and secure password hashing implementation

03Comprehensive protection against SQL injection and XSS

04Advanced Role-Based Access Control (RBAC) and permissions

05Secure file upload validation and API rate limiting patterns

06Production-grade security settings and header configuration

Use Cases

01Implementing complex multi-role authorization systems

02Hardening a Django application for production deployment

03Conducting security audits on existing Django codebases

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add flatrick/mdt django-security

For use in Claude.ai and ChatGPT