Django uses by default secure hashing and salt to store passwords code example
Example: Module "django.contrib.auth.hashers" does not define a "BcryptPasswordHasher" attribute/class
PASSWORD_HASHERS = [
'django.contrib.auth.hashers.PBKDF2PasswordHasher',
'django.contrib.auth.hashers.PBKDF2SHA1PasswordHasher',
'django.contrib.auth.hashers.Argon2PasswordHasher',
'django.contrib.auth.hashers.BCryptSHA256PasswordHasher',
]