django-reviewer_skill

This skill reviews Django projects for ORM optimization, view patterns, security, and admin practices to improve performance, safety, and maintainability.
  • TypeScript

1

GitHub Stars

1

Bundled Files

2 months ago

Catalog Refreshed

4 months ago

First Indexed

Readme & install

Copy the install command, review bundled files from the catalogue, and read any extended description pulled from the listing source.

Installation

Preview and clipboard use veilstrat where the catalogue uses aiagentskills.

npx veilstrat add skill physics91/claude-vibe --skill django-reviewer

  • SKILL.md7.6 KB

Overview

This skill reviews Django projects to find performance issues, security risks, and maintenance problems across ORM usage, views, templates, admin, and migrations. It produces actionable recommendations to optimize queries, restructure business logic, secure templates, and make migrations safe. The output highlights severity and file locations so you can prioritize fixes quickly.

How this skill works

It scans project indicators (requirements, manage.py, settings.py, urls.py, views.py, models.py) to detect a Django codebase and inspects ORM patterns, view structure, template usage, model design, admin configuration, and migrations. For each finding it reports severity (CRITICAL/HIGH/MEDIUM/LOW), explains the issue, and gives concrete code-level remediation such as select_related/prefetch_related, service extraction, CSRF/JSON encoding fixes, and safe migration sequences. Recommendations are framed to be actionable and prioritized.

When to use it

  • Before releases to catch N+1 queries, unindexed filters, and heavy migrations
  • During code review for new views or refactors to enforce patterns and permissions
  • When you suspect template XSS, unsafe |safe usage, or missing CSRF tokens
  • When preparing schema changes to ensure zero-downtime migrations
  • When hardening admin customizations and model representations in the admin UI

Best practices

  • Detect and fix N+1 queries with select_related for FK and prefetch_related for M2M/reverse FK
  • Keep business logic out of views—use service/manager layers and Class-Based Views with Mixins
  • Treat templates as untrusted: avoid |safe, prefer json_script for JS, and always include {% csrf_token %}
  • Design models with explicit max_length, db_index for filtered fields, and useful __str__ and Meta ordering
  • Split schema and data migrations: add nullable fields first, populate data, then make fields non-nullable

Example use cases

  • A pull request contains new list views that may cause N+1 queries; run the skill to get select_related suggestions
  • A team plans a large schema change; run migration safety checks to recommend a zero-downtime strategy
  • An admin customization shows slow pages; detect missing indexes and poor queryset usage
  • A template injects user content into JavaScript; get json_script and escaping fixes to prevent XSS
  • Hardening a legacy app: identify views missing permission checks and recommend LoginRequired/PermissionMixins

FAQ

No. It targets Django projects. For FastAPI, Flask, or DRF-only APIs, use the appropriate reviewer (fastapi-reviewer, flask-reviewer, or api-expert).

How does it detect a Django project?

It looks for indicators like django in requirements/pyproject, presence of manage.py, settings.py with INSTALLED_APPS, and common Django files such as urls.py, views.py, and models.py.

Will it modify my code or migrations?

No. It only analyzes and reports findings with suggested code changes and safe migration steps for you to apply manually.

Built by
VeilStrat
AI signals for GTM teams
© 2026 VeilStrat. All rights reserved.All systems operational
django-reviewer skill by physics91/claude-vibe | VeilStrat