← Back to Skills Marketplace
ivangdavila

Django

by Iván · GitHub ↗ · v1.0.1
linuxdarwinwin32 ✓ Security Clean
1391
Downloads
2
Stars
6
Active Installs
2
Versions
Install in OpenClaw
/install django
Description
Avoid common Django mistakes — QuerySet evaluation, N+1 queries, migration conflicts, and ORM traps.
README (SKILL.md)

Quick Reference

Topic File
QuerySet lazy eval, N+1, transactions orm.md
Request handling, middleware, context views.md
Validation, CSRF, file uploads forms.md
Migrations, signals, managers models.md
XSS, CSRF, SQL injection, auth security.md
Async views, ORM in async, channels async.md

Critical Rules

  • QuerySets are lazy — iterating twice hits DB twice, use list() to cache
  • select_related for FK/O2O, prefetch_related for M2M — or N+1 queries
  • update() skips save() — no signals fire, no auto_now update
  • F() for atomic updates — F('count') + 1 avoids race conditions
  • get() raises DoesNotExist or MultipleObjectsReturned — use filter().first() for safe
  • DEBUG=False requires ALLOWED_HOSTS — 400 Bad Request without it
  • Forms need {% csrf_token %} — or 403 Forbidden on POST
  • auto_now can't be overridden — use default=timezone.now if need manual set
  • exclude(field=None) excludes NULL — use filter(field__isnull=True) for NULL
  • Circular imports in models — use string reference: ForeignKey('app.Model')
  • transaction.atomic() doesn't catch exceptions — errors still propagate
  • sync_to_async for ORM in async views — ORM is sync-only
Usage Guidance
This skill is a set of static Django best-practice notes and appears internally consistent. Because it is instruction-only (no install, no secrets requested), it carries low risk by itself. Before installing, consider: (1) verify the content matches your expected Django version and coding standards, (2) be cautious if you later combine this skill with other skills that can execute code or access files — those could change the risk profile, and (3) review the security.md recommendations in your own codebase (e.g., ensure SECRET_KEY and ALLOWED_HOSTS are handled properly).
Capability Analysis
Type: OpenClaw Skill Name: django Version: 1.0.1 This skill bundle is purely informational, providing documentation on common pitfalls and best practices in Django development, including security. The `SKILL.md` and other markdown files (`security.md` in particular) detail various 'traps' such as XSS, CSRF, and SQL injection risks, but present them as vulnerabilities to be avoided, consistent with the skill's stated purpose of helping 'Build secure Django apps'. There is no executable code, no instructions for prompt injection, data exfiltration, or any other malicious activity.
Capability Assessment
Purpose & Capability
The name/description (Django ORM, N+1, migrations, security) matches the provided markdown files; the only declared binary requirement is python3, which is reasonable for a Django-focused skill and no unrelated credentials or tools are requested.
Instruction Scope
SKILL.md and the included docs contain static guidance and do not instruct the agent to read system secrets, access external endpoints, or run arbitrary commands. There is no scope creep in the runtime instructions.
Install Mechanism
No install spec and no code files — this is instruction-only, so nothing is downloaded or written to disk during install.
Credentials
The skill requests no environment variables, credentials, or config paths; requested access is minimal and proportional to being a documentation skill.
Persistence & Privilege
always is false and the skill is user-invocable; it does not request persistent system presence or modify other skills or system-wide settings.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install django
  3. After installation, invoke the skill by name or use /django
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.1
Initial release
v1.0.0
Initial release
Metadata
Slug django
Version 1.0.1
License
All-time Installs 6
Active Installs 6
Total Versions 2
Frequently Asked Questions

What is Django?

Avoid common Django mistakes — QuerySet evaluation, N+1 queries, migration conflicts, and ORM traps. It is an AI Agent Skill for Claude Code / OpenClaw, with 1391 downloads so far.

How do I install Django?

Run "/install django" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Django free?

Yes, Django is completely free (open-source). You can download, install and use it at no cost.

Which platforms does Django support?

Django is cross-platform and runs anywhere OpenClaw / Claude Code is available (linux, darwin, win32).

Who created Django?

It is built and maintained by Iván (@ivangdavila); the current version is v1.0.1.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments