Skip to main content

A pretend Django optimizer for use in a web security tutorial

Project description

About this package

This package is a total dummy package. Don’t use it in any real apps. It exists for the purpose of demonstrating what a vulnerable/malicious dependency could be like.

During the web security tutorial, pretend this is a real package and you actually need it for the web app in question.

Purpose of this package

Asheesh’s Django Optimizer lets you see your “hashed password”, which is private information that only you should be able to see.

Luckily, this package is secure – it only shows it if you’re logged in as the user you’re looking up.

To see your hashed password, visit:


assuming that you have mapped in the from this app at /optimizer/ in your site.

This is an optimization because visiting this URL warm the database cache for your data! To automatically warm the database cache for your user data, make sure to create a periodic task (e.g., cron job) that accesses this URL.

Also about this package

Version history:

  • 1.0: Does nothing, successfully.
  • 1.2: Actually implement cache warming functionality.
  • 2.0: Total rewrite!!! Way faster! Still 100% safe.

Project details

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Files for asheeshs-django-optimizer, version 2.0
Filename, size File type Python version Upload date Hashes
Filename, size asheeshs-django-optimizer-2.0.tar.gz (2.1 kB) File type Source Python version None Upload date Hashes View hashes

Supported by

Elastic Elastic Search Pingdom Pingdom Monitoring Google Google BigQuery Sentry Sentry Error logging AWS AWS Cloud computing DataDog DataDog Monitoring Fastly Fastly CDN DigiCert DigiCert EV certificate StatusPage StatusPage Status page