News

Django security releases issued for 3.0.4, 2.2.11, and 1.11.29

A new security and bug fix release. As ever, updating to the latest version is always recommended.

PSA: This is very likely to be the last release of Django 1.11. Time to move on if you're still there. (via Carlton Gibson)

Django 1.11 LTS reaches the end of extended support in April 2020.

30% off PyCharm with all proceeds towards Django

Receive 30% off the powerful PyCharm editor. All proceeds benefit the Django Software Foundation.

Articles

The Django Speed Handbook: Making a Django app faster

This comprehensive handbook has something for everyone from the backend to even some helpful frontend tricks.

How to Disallow Auto-named Django Migrations

Adam Johnson walks us through three methods for disallowing Django's auto-named Migrations, which includes Django's check system and pre-commit hooks, which may be new to you.

Views on Views

Matt Layman explains one of Django's core building blocks, Django Views.

Mental Models for Class Based Views

This article is a deep dive into how Django's class-based views work behind the scenes.

Sponsored Link

Django Crash Course: Covers Python 3.8 and Django 3.x - Alpha Version

The authors of Two Scoops of Django have released their latest book, the Django Crash Course. Based on their corporate training, they are offering the book for under US$20, which is a steal considering they normally charge $3000/person for in-person training. This book, currently 50 chapters long, is intended for passionate learners willing to get the latest, most cutting-edge written materials. Now in beta, the book is being updated several days a week!.

Available in E-Book format, the paperback, coil-bound, and hardcover versions are available for pre-order.

Podcasts

Test & Code: Django with Lacey Herschel Williams

Lacey discusses the Django community, learning Django, and testing.

Django Chat - Resources & Mentorship

An overview the best current Django resources and how to find a Django mentor.

Tutorials

Django Markdown Tutorial

Learn how to add Markdown to any Django website.

How to Add Websockets to a Django App without Extra Dependencies

Django 3.0 ships with out of the box, dependency-free Websocket support and Jayden Windle walks us through the process of setting everything up.

Projects

edelvalle/reactor: Phoenix LiveView but for Django

pip install django-reactor

Keep an eye on this project. Reactor turns Django into a full-stack framework and manages re-rendering parts of your HTML template, pushes it to your web browser, and then updates automatically.

django-bleach

marksweb / django-bleach

Bleach is a Python module that takes any HTML input, and returns valid, sanitised HTML that contains only an allowed subset of HTML tags, attributes and styles. django-bleach is a Django app that makes using bleach extremely easy.

django-bleach - Bleach and sanitise user HTML

Bleach is a Python module that takes any HTML input, and returns valid, sanitised HTML that contains only an allowed subset of HTML tags attributes and styles. django-bleach is a Django app that makes using bleach extremely easy.

Read the documentation here.

Setup

1. Install django-bleach via pip:

   pip install django-bleach
   

2. Add django-bleach to your INSTALLED_APPS:

   INSTALLED_APPS = [
       # ...
       'django_bleach',
       # ...
   ]

3. Select some sensible defaults for the allowed tags, attributes and styles and the behaviour when unknown tags are encountered. Each of these are optional, and default to using the bleach defaults. See the bleach documentation:

   # Which HTML tags are allowed
   BLEACH_ALLOWED_TAGS = ['p', 'b', 'i', 'u', 'em', 'strong', 'a']
   # Which HTML attributes are allowed
   BLEACH_ALLOWED_ATTRIBUTES = ['href', 'title', 'style']
   
   #

   …

View on GitHub

A Django app for using bleach to properly sanitize HTML inputs.

Events

PyCon US Update on COVID-19

PyCon US is still going forward and the PSF is giving weekly updates to keep everyone updated on where we are at.