Adoption

Agent Skills are supported by leading AI development tools.

VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory

aexol-studio/error-handling

Name: error-handling
Author: aexol-studio

examples/new/.opencode/skills/error-handling/SKILL.md

npx skillsauth add aexol-studio/axolotl error-handling

Clean

TrivyContainer and dependency vulnerability scanner

Clean

SemgrepStatic code analysis for vulnerabilities

Clean

mcp-scan (Snyk)Model Context Protocol security validation

Skipped

Snyk (dep)Open source security scanning

Skipped

Socket.devSupply chain security analysis

Skipped

VirusTotalMulti-engine malware detection

Skipped

CrowdStrikeAdvanced threat intelligence

Skipped

OSV-ScannerOpen Source Vulnerability database check

Skipped

OWASP Dep-Check

Error Extraction (`frontend/src/api/errors.ts`)

Errors are typed via GraphQLErrorEntry interface (in errors.ts) — no as any:

extensions.code is string | undefined
getGraphQLErrorCode(error) extracts the error code from extensions

import { getGraphQLErrorMessage, getGraphQLErrorCode, isAuthError } from '../api';

getGraphQLErrorMessage(error); // → errors[0].message, or "An unexpected error occurred"
getGraphQLErrorCode(error); // → errors[0].extensions.code, or null
isAuthError(error); // → true if code is UNAUTHORIZED or FORBIDDEN

Never access extensions.originalError — dev-only, breaks in production.

Global Handlers (`frontend/src/lib/queryClient.ts`)

import { queryKeys } from './queryKeys.js';

let isHandlingAuthError = false;

export const queryClient = new QueryClient({
  queryCache: new QueryCache({
    onError: async (error) => {
      if (typeof window === 'undefined') return;
      if (isAuthError(error) && !isHandlingAuthError) {
        isHandlingAuthError = true;

        toast.info('Session expired. Please log in again.');

        await queryClient.cancelQueries();
        mutation()({ user: { logout: true } }).catch(() => {}); // best-effort (non-awaited)

        queryClient.setQueryData(queryKeys.me, null);
        queryClient.clear();
        window.location.href = '/login';
      }
    },
  }),
  mutationCache: new MutationCache({
    onError: (error) => {
      if (isAuthError(error)) return; // QueryCache handles it
      toast.error(getGraphQLErrorMessage(error));
    },
  }),
});

Auth error flow: SSR guard → de-dupe guard → cancel queries → best-effort non-awaited logout mutation → clear auth/cache state → window.location.href = '/login'
Non-auth mutation error → toast.error() with extracted message
Do NOT add onError to individual hooks — the global handler covers it

Auth errors must suppress retries — add to defaultOptions:

defaultOptions: {
  queries: {
    retry: (failureCount, error) => {
      if (isAuthError(error)) return false;
      return failureCount < 1;
    },
  },
},

Per-Hook Pattern (success only)

const createMutation = useMutation({
  mutationFn: async (input) => {
    /* ... */
  },
  onSuccess: () => {
    queryClient.invalidateQueries({ queryKey: queryKeys.items });
    toast.success('Item created!');
    // ⛔ no onError here
  },
});

// For form flow — return boolean so forms know success/failure
const submit = async (input) => {
  try {
    await createMutation.mutateAsync(input);
    return true;
  } catch {
    return false;
  } // error toast already shown globally
};

Error Code Conventions

UNAUTHORIZED — missing/invalid auth token or session
FORBIDDEN — valid session, insufficient permission
INVALID_CREDENTIALS — wrong email/password on login
EMAIL_EXISTS — registration with existing email
INVALID_INPUT — input fails validation rules
NOT_FOUND — requested resource doesn't exist

Backend Throw Pattern

import { GraphQLError } from 'graphql'; // NOT from graphql-yoga

throw new GraphQLError('Invalid email or password', {
  extensions: { code: 'INVALID_CREDENTIALS' },
});
// Plain Error → masked to "Unexpected error." on client (use for internal crashes only)

Error Masking

GraphQL Yoga has error masking enabled by default — DO NOT disable it. Only GraphQLError messages reach the client; plain Error messages are masked to "Unexpected error." This is intentional for security.

aexol-studio/error-handling

examples/new/.opencode/skills/error-handling/SKILL.md

GraphQL error extraction, global toast handling via QueryCache/MutationCache, auth error auto-logout, and per-hook success toast patterns

27 stars

development

Updated Mar 27, 2026

$ install --global

skillsauth

npx skillsauth add aexol-studio/axolotl error-handling

Install this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.

Security Scan Results

3 of 9 scanners reported clean

Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.

Scanners Passed

Scanners in report

Clean

TrivyContainer and dependency vulnerability scanner

95%

Clean

SemgrepStatic code analysis for vulnerabilities

95%

Clean

mcp-scan (Snyk)Model Context Protocol security validation

95%

Skipped

Snyk (dep)Open source security scanning

50%

Skipped

Socket.devSupply chain security analysis

50%

Skipped

VirusTotalMulti-engine malware detection

50%

Skipped

CrowdStrikeAdvanced threat intelligence

50%

Skipped

OSV-ScannerOpen Source Vulnerability database check

50%

Skipped

OWASP Dep-Check

50%

Last scanned: Mar 29, 2026, 11:55 AM36.6s1 file scanned

SKILL.md

name:: error-handling
description:: GraphQL error extraction, global toast handling via QueryCache/MutationCache, auth error auto-logout, and per-hook success toast patterns

Error Extraction (`frontend/src/api/errors.ts`)

Errors are typed via GraphQLErrorEntry interface (in errors.ts) — no as any:

extensions.code is string | undefined
getGraphQLErrorCode(error) extracts the error code from extensions

import { getGraphQLErrorMessage, getGraphQLErrorCode, isAuthError } from '../api';

getGraphQLErrorMessage(error); // → errors[0].message, or "An unexpected error occurred"
getGraphQLErrorCode(error); // → errors[0].extensions.code, or null
isAuthError(error); // → true if code is UNAUTHORIZED or FORBIDDEN

Never access extensions.originalError — dev-only, breaks in production.

Global Handlers (`frontend/src/lib/queryClient.ts`)

import { queryKeys } from './queryKeys.js';

let isHandlingAuthError = false;

export const queryClient = new QueryClient({
  queryCache: new QueryCache({
    onError: async (error) => {
      if (typeof window === 'undefined') return;
      if (isAuthError(error) && !isHandlingAuthError) {
        isHandlingAuthError = true;

        toast.info('Session expired. Please log in again.');

        await queryClient.cancelQueries();
        mutation()({ user: { logout: true } }).catch(() => {}); // best-effort (non-awaited)

        queryClient.setQueryData(queryKeys.me, null);
        queryClient.clear();
        window.location.href = '/login';
      }
    },
  }),
  mutationCache: new MutationCache({
    onError: (error) => {
      if (isAuthError(error)) return; // QueryCache handles it
      toast.error(getGraphQLErrorMessage(error));
    },
  }),
});

Auth error flow: SSR guard → de-dupe guard → cancel queries → best-effort non-awaited logout mutation → clear auth/cache state → window.location.href = '/login'
Non-auth mutation error → toast.error() with extracted message
Do NOT add onError to individual hooks — the global handler covers it

Auth errors must suppress retries — add to defaultOptions:

defaultOptions: {
  queries: {
    retry: (failureCount, error) => {
      if (isAuthError(error)) return false;
      return failureCount < 1;
    },
  },
},

Per-Hook Pattern (success only)

const createMutation = useMutation({
  mutationFn: async (input) => {
    /* ... */
  },
  onSuccess: () => {
    queryClient.invalidateQueries({ queryKey: queryKeys.items });
    toast.success('Item created!');
    // ⛔ no onError here
  },
});

// For form flow — return boolean so forms know success/failure
const submit = async (input) => {
  try {
    await createMutation.mutateAsync(input);
    return true;
  } catch {
    return false;
  } // error toast already shown globally
};

Error Code Conventions

UNAUTHORIZED — missing/invalid auth token or session
FORBIDDEN — valid session, insufficient permission
INVALID_CREDENTIALS — wrong email/password on login
EMAIL_EXISTS — registration with existing email
INVALID_INPUT — input fails validation rules
NOT_FOUND — requested resource doesn't exist

Backend Throw Pattern

import { GraphQLError } from 'graphql'; // NOT from graphql-yoga

throw new GraphQLError('Invalid email or password', {
  extensions: { code: 'INVALID_CREDENTIALS' },
});
// Plain Error → masked to "Unexpected error." on client (use for internal crashes only)

Error Masking

Related Skills

aexol-studio/mobile-starter-architecture

tools

VerifiedTrustedCommunity

Baseline architecture for Axolotl mobile starter (Expo Router + reusable blocks)

27SKILL.mdUpdated Mar 27, 2026

aexol-studio/mobile-starter-architecture

aexol-studio/mobile-routing-expo-router

tools

VerifiedTrustedCommunity

Expo Router conventions for route groups, native headers, and starter navigation

27SKILL.mdUpdated Mar 27, 2026

aexol-studio/mobile-routing-expo-router

aexol-studio/mobile-i18n-dev-translate

development

VerifiedTrustedCommunity

i18n baseline and dev-translate setup for Expo mobile starter

27SKILL.mdUpdated Mar 27, 2026

aexol-studio/mobile-i18n-dev-translate

aexol-studio/mobile-graphql-react-query-zeus

development

VerifiedTrustedCommunity

Starter data layer pattern with React Query + Zeus for Expo app

27SKILL.mdUpdated Mar 27, 2026

aexol-studio/mobile-graphql-react-query-zeus

Download

For Claude Desktop. Download once, then upload the file in the app — no terminal needed.

Need help? View full Cowork setup guide →

Install manually

Choose your platform

# Clone the repo
git clone https://github.com/aexol-studio/axolotl.git

# Copy into Claude Code skills folder (global)
cp -r axolotl/examples/new/.opencode/skills/error-handling ~/.claude/skills/

Claude Code Skills — official skills path docs.

Repository

aexol-studio/axolotl

27 stars

Compatible with

Claude Code

OpenAI Codex CLI

ChatGPT

Adoption

aexol-studio/error-handling

$ install --global

Security Scan Results

SKILL.md

Error Extraction (frontend/src/api/errors.ts)

Global Handlers (frontend/src/lib/queryClient.ts)

Per-Hook Pattern (success only)

Error Code Conventions

Backend Throw Pattern

Error Masking

Related Skills

aexol-studio/mobile-starter-architecture

aexol-studio/mobile-routing-expo-router

aexol-studio/mobile-i18n-dev-translate

aexol-studio/mobile-graphql-react-query-zeus

aexol-studio/error-handling

$ install --global

Security Scan Results

SKILL.md

Error Extraction (frontend/src/api/errors.ts)

Global Handlers (frontend/src/lib/queryClient.ts)

Per-Hook Pattern (success only)

Error Code Conventions

Backend Throw Pattern

Error Masking

Related Skills

aexol-studio/mobile-starter-architecture

aexol-studio/mobile-routing-expo-router

aexol-studio/mobile-i18n-dev-translate

aexol-studio/mobile-graphql-react-query-zeus

Error Extraction (`frontend/src/api/errors.ts`)

Global Handlers (`frontend/src/lib/queryClient.ts`)

Error Extraction (`frontend/src/api/errors.ts`)

Global Handlers (`frontend/src/lib/queryClient.ts`)