Skip to main content
This is a pre-production deployment of Warehouse. Changes made here affect the production instance of PyPI (
Help us improve Python packaging - Donate today!

A pretend Django optimizer for use in a web security tutorial

Project Description

About this package

This package is a total dummy package. Don’t use it in any real apps. It exists for the purpose of demonstrating what a vulnerable/malicious dependency could be like.

During the web security tutorial, pretend this is a real package and you actually need it for the web app in question.

Purpose of this package

Asheesh’s Django Optimizer lets you see your “hashed password”, which is private information that only you should be able to see.

Luckily, this package is secure – it only shows it if you’re logged in as the user you’re looking up.

To see your hashed password, visit:


assuming that you have mapped in the from this app at /optimizer/ in your site.

This is an optimization because visiting this URL warm the database cache for your data! To automatically warm the database cache for your user data, make sure to create a periodic task (e.g., cron job) that accesses this URL.

Also about this package

Version history:

  • 1.0: Does nothing, successfully.
  • 1.2: Actually implement cache warming functionality.
  • 2.0: Total rewrite!!! Way faster! Still 100% safe.

Release History

This version
History Node


History Node


History Node


History Node


Download Files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Filename, Size & Hash SHA256 Hash Help File Type Python Version Upload Date
(2.1 kB) Copy SHA256 Hash SHA256
Source None Apr 4, 2015

Supported By

Elastic Elastic Search Pingdom Pingdom Monitoring Dyn Dyn DNS Sentry Sentry Error Logging CloudAMQP CloudAMQP RabbitMQ Heroku Heroku PaaS Kabu Creative Kabu Creative UX & Design Fastly Fastly CDN DigiCert DigiCert EV Certificate Google Google Cloud Servers DreamHost DreamHost Log Hosting