# Python Security Essentials

## Learning Objectives

- Validate inputs at boundaries
- Handle secrets safely
- Avoid logging sensitive data
- Understand common injection risks

---

## 1. Input Validation

In [None]:
from pydantic import BaseModel

class DocumentCreate(BaseModel):
    title: str
    content: str

doc = DocumentCreate(title='Intro', content='Text')
print(doc)

## 2. Safe Logging

In [None]:
import logging

logger = logging.getLogger(__name__)
logger.info('user.login', extra={'user_id': '123'})
print('safe logging example')

## 3. Secrets Handling

In [None]:
import os

api_key = os.getenv('API_KEY')
if not api_key:
    print('Missing API_KEY (expected in env)')

## Summary

- Validate inputs
- Avoid logging secrets
- Keep dependencies updated