Does it support custom user models?

Absolutely, it provides standardized templates for AbstractUser implementation and configures advanced password validation and hashing.

What security headers does it configure?

It provides configurations for HSTS, X-Frame-Options (Clickjacking protection), X-Content-Type-Options, and XSS filtering.

How does this skill prevent SQL injection?

It enforces the use of Django's ORM parameterization and provides safe, parameterized patterns for instances where raw SQL queries are required.

Is CSRF protection included?

Yes, it covers best practices for template tokens, secure AJAX request handling, and configuring CSRF trusted origins for modern web apps.

Can it help with production deployment?

Yes, it includes comprehensive configurations for security headers, SSL redirection, HSTS, and secure cookie management specifically for production environments.

Django Security Specialist

Name: Django Security Specialist
Author: Infopibe

byInfopibe

•

Security & Testing

Implements production-grade security configurations and defensive coding patterns for Django web applications.

The django-security skill equips Claude with specialized knowledge to harden Django web applications against common vulnerabilities like SQL injection, Cross-Site Scripting (XSS), and Cross-Site Request Forgery (CSRF). It provides comprehensive guidance for configuring secure production settings, implementing robust custom user models, managing role-based access control (RBAC), and validating file uploads. This skill is essential for developers transitioning from local development to production or those conducting deep security audits of existing Python-based web architectures.

Key Features

01Hardened production settings configuration including SSL, HSTS, and secure cookies

021 GitHub stars

03Defensive patterns for preventing SQL injection and XSS via template escaping

04Role-Based Access Control (RBAC) and granular permission logic for views

05Secure file upload validation for extensions, sizes, and storage locations

06Implementation of custom user models and advanced Argon2 password hashing

Use Cases

01Hardening a Django application's settings file before a production launch

02Implementing a secure custom authentication system with specific user roles

03Auditing existing views and templates for security vulnerabilities and middleware gaps

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add infopibe/everything-claude-code django-security

For use in Claude.ai and ChatGPT

Key Features

01Hardened production settings configuration including SSL, HSTS, and secure cookies

021 GitHub stars

03Defensive patterns for preventing SQL injection and XSS via template escaping

04Role-Based Access Control (RBAC) and granular permission logic for views

05Secure file upload validation for extensions, sizes, and storage locations

06Implementation of custom user models and advanced Argon2 password hashing

Use Cases

01Hardening a Django application's settings file before a production launch

02Implementing a secure custom authentication system with specific user roles

03Auditing existing views and templates for security vulnerabilities and middleware gaps

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add infopibe/everything-claude-code django-security

For use in Claude.ai and ChatGPT