implementing-scalekit-django-auth
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements a standard authentication flow using the official Scalekit SDK and Django framework.
- [SAFE]: No hardcoded secrets or sensitive information exposure. The implementation uses environment variables for configuration.
- [SAFE]: Explicitly includes multiple security best practices:
- CSRF Mitigation: Uses a cryptographically secure state parameter generated with
secrets.token_urlsafe(32)to validate OAuth callbacks. - Session Security: Configures
SESSION_COOKIE_HTTPONLY=TrueandSESSION_COOKIE_SAMESITE='Lax'to protect session cookies. - Open Redirect Protection: Validates the redirect path starts with
/before performing the redirect in the login callback. - Session Fixation Prevention: Uses
request.session.cycle_key()after successful login to rotate session identifiers. - Cache Control: Recommends
@never_cacheto prevent the browser from caching authenticated content. - [SAFE]: Dependencies are restricted to reputable packages:
scalekit,django, andpython-dotenv.
Audit Metadata