Django Application Security: Common Risks, Data Protection, and Best Practices

Django Pub #4 is an online event in the Django Pub series, held as a conversational webinar focused on practical security in Django applications. This is not a dry theoretical lecture, but a live discussion about how security looks in real projects, where mistakes most often happen, and what developers should pay attention to during implementation.

During the event, we will cover common vulnerabilities in Django projects, including XSS, CSRF, and SQL injection, as well as typical mistakes related to data handling, access control, APIs, and application configuration. We will also highlight secure Django settings such as CSP, SECURE_* settings, cookies, secrets, and general approaches to protecting applications in production environments.

The webinar will also include selected real-world or near real-world examples inspired by bug reports, bug bounty findings, and security review practice, showing how small architectural or logical mistakes can lead to serious security impact. In addition, we will discuss emerging challenges related to AI integrations in Django applications, including data leakage risks, unsafe automation, and uncontrolled interaction with LLM-based systems.

This event will be useful for developers, students, and everyone interested in Django, Python, and the security of modern web applications.