wfhanna1/api-conventions
.claude/skills/api-conventions/SKILL.md
Azure Functions and Service Bus message conventions for this project. Applied automatically when working on function_app.py or Service Bus message schemas.
development
Updated Apr 16, 2026
$ install --global
skillsauthnpx skillsauth add wfhanna1/Automated-obs-trigger api-conventionsInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 16, 2026, 3:28 PM4.1s1 file scanned
SKILL.md
- name:
- api-conventions
- description:
- Azure Functions and Service Bus message conventions for this project. Applied automatically when working on function_app.py or Service Bus message schemas.
Azure Functions & Message Conventions
HTTP Function Conventions (LoadSchedule)
Route Pattern
- Route:
/api/<kebab-case-name> - Example:
/api/load-schedule
HTTP Methods
- Use explicit
methods=["POST"]on@app.routefor mutation operations - Trigger responses return
func.HttpResponsewith appropriate status codes
Response Status Codes
200- Success207- Partial success (some messages enqueued, some failed)400- Bad request (schedule validation error)500- Internal config error (missing env vars)502- Upstream fetch failure (GitHub or servers.yaml unavailable)
Error Response Body
- Plain text describing the error — no JSON envelope needed for internal automation endpoints
- Include enough context to diagnose without exposing credentials
Environment Variable Access Pattern
def _get_env(name: str) -> str:
value = os.environ.get(name)
if not value:
raise RuntimeError(f"Required environment variable '{name}' is not set.")
return value
Always use this pattern. Never use os.environ[name] directly (raises KeyError with less context).
Service Bus Message Conventions (OBSControl)
Message Schema
{
"command": "start" | "stop",
"server_id": "<id matching servers.yaml>",
"action": "recording" | "streaming"
}
Message Routing
- Queue name:
obs-jobs - Scheduled delivery via
msg.scheduled_enqueue_time_utc(must be naive UTC datetime — striptzinfo) - One START message and one STOP message per schedule entry
Error Handling in Service Bus Triggers
- Malformed JSON or missing keys: log and return (no re-raise — message dead-letters after max delivery count)
- Config/infra errors (Key Vault unavailable, servers.yaml fetch failed): re-raise to trigger Azure retry
- SSH/WebSocket failures: re-raise to trigger Azure retry / dead-letter
Key Vault Secret Naming Convention
| Secret Name | Value |
|---|---|
| ssh-key-<server-id-with-hyphens> | Base64-encoded PEM private key |
| obs-ws-password-<server-id-with-hyphens> | OBS WebSocket password |
Server IDs use underscores (e.g., win-server-1). Key Vault names use hyphens.
Conversion: kv_id = server_id.replace("_", "-")
servers.yaml Schema
servers:
<server-id>:
name: "Human-readable name"
platform: windows | mac
host: "<IP or hostname>"
ssh:
user: "<username>"
port: 22
obs:
path: "<full path to OBS executable>"
websocket_port: 4455
Logging Conventions
Use module-level logger in each file:
logger = logging.getLogger(__name__)
Log levels:
logger.info(...)— normal operation events (triggered, started, stopped, enqueued)logger.warning(...)— recoverable issues (SSH retry, WebSocket retry)logger.error(...)— failures that need attentionlogger.debug(...)— internal state useful for development (SSH exec commands, port numbers)
Never log: SSH key PEM content, OBS passwords, or Service Bus connection strings.
Related Skills
wfhanna1/tdd
development
VerifiedTrustedCommunity
Test-driven development workflow. Write failing tests first, then implement to make them pass.
SKILL.mdUpdated Apr 16, 2026
wfhanna1/fix-issue
data-ai
VerifiedTrustedCommunity
Fix a GitHub issue end-to-end using the agent team workflow
SKILL.mdUpdated Apr 16, 2026
wfhanna1/code-review
development
VerifiedTrustedCommunity
Run a comprehensive code review on recent changes using the code-reviewer and security-reviewer agents
SKILL.mdUpdated Apr 16, 2026
openclaw/openclaw-secret-scanning-maintainer
development
VerifiedTrustedCommunity
Maintainer-only workflow for handling GitHub Secret Scanning alerts on OpenClaw. Use when Codex needs to triage, redact, clean up, and resolve secret leakage found in issue comments, issue bodies, PR comments, or other GitHub content.
357,764SKILL.mdUpdated Apr 15, 2026