Run any Skill in Manus with one click

Get Started

jinja2

Best practices for template rendering with Jinja2 including environments, filters, autoescaping, and security.

Run Skill in Manus

Overview

Best practices for template rendering with Jinja2 including environments, filters, autoescaping, and security.

Install command

npx skills add https://github.com/microsoft/debugpy --skill jinja2

Copy and paste this command into Claude Code to install the skill

Source

microsoft/debugpy

Stars2,415

Forks196

UpdatedApril 3, 2026 at 22:10

SKILL.md

readonly

name	jinja2
description	Best practices for template rendering with Jinja2 including environments, filters, autoescaping, and security.

Skill: Jinja2

Best practices for template rendering with Jinja2 including environments, filters, autoescaping, and security.

When to Use

Apply this skill when rendering templates with Jinja2 — HTML pages, emails, configuration files, and code generation.

Environment

Create a jinja2.Environment(loader=..., autoescape=...) once and reuse it.
Use FileSystemLoader for file-based templates, PackageLoader for installed packages.
Enable autoescape=True for HTML templates to prevent XSS.

Templates

Use {{ variable }} for output, {% if/for/block %} for control flow.
Use template inheritance ({% extends 'base.html' %}) for layout reuse.
Define custom filters for reusable transformations.

Security

Always enable autoescape=True when rendering HTML.
Use SandboxedEnvironment for untrusted templates.
Never render user input as template code — only as template data.
Use |e filter explicitly when autoescape is off.

Pitfalls

Don't use Template(string) directly — it bypasses the environment's loader and settings.
Watch for undefined variable errors — use undefined=StrictUndefined during development.
Avoid complex logic in templates — keep them focused on presentation.

More from this repository

same repository

click

microsoft/debugpy

Best practices for building CLI applications with Click including commands, groups, options, and testing.

2026-04-032.4k

django

microsoft/debugpy

Best practices for Django web development including models, views, templates, and testing.

2026-04-032.4k

flask

microsoft/debugpy

Best practices for Flask web development including routing, blueprints, and testing.

2026-04-032.4k

numpy

microsoft/debugpy

Best practices for numerical computing with NumPy including arrays, broadcasting, and vectorization.

2026-04-032.4k

pytest

microsoft/debugpy

Best practices for writing and organizing tests with pytest including fixtures, parametrize, and plugins.

2026-04-032.4k

requests

microsoft/debugpy

Best practices for HTTP client usage with Requests including sessions, error handling, and timeouts.

2026-04-032.4k

Source

microsoft

microsoft/debugpy

View GitHub Repository View Creator Repositories

Install command

Download

Run Skill in Manus

Useful forSOC

Software DevelopersComputer and Mathematical Occupations15-1252L4

name	jinja2
description	Best practices for template rendering with Jinja2 including environments, filters, autoescaping, and security.

Skill: Jinja2

Best practices for template rendering with Jinja2 including environments, filters, autoescaping, and security.

When to Use

Apply this skill when rendering templates with Jinja2 — HTML pages, emails, configuration files, and code generation.

Environment

Create a jinja2.Environment(loader=..., autoescape=...) once and reuse it.
Use FileSystemLoader for file-based templates, PackageLoader for installed packages.
Enable autoescape=True for HTML templates to prevent XSS.

Templates

Use {{ variable }} for output, {% if/for/block %} for control flow.
Use template inheritance ({% extends 'base.html' %}) for layout reuse.
Define custom filters for reusable transformations.

Security

Always enable autoescape=True when rendering HTML.
Use SandboxedEnvironment for untrusted templates.
Never render user input as template code — only as template data.
Use |e filter explicitly when autoescape is off.

Pitfalls

Don't use Template(string) directly — it bypasses the environment's loader and settings.
Watch for undefined variable errors — use undefined=StrictUndefined during development.
Avoid complex logic in templates — keep them focused on presentation.