DjangoCon US 2016 - Frog and Toad Learn About Django Security by Philip James,Django Security Talk Notes,Introduction
Philip James, how long I’ve worked with Python and Django, background at EB
Introduction to the story, and the characters
Safe-ish: Talk about Django’s Security Model and how it tries to provide sane defaults for developers
Run-through of the parts of the django security model,XSS (brief definition),Django escapes characters by default,How?,How do you turn it off? Mark Safe, | n, safe,CSRF (