Adoption

Agent Skills are supported by leading AI development tools.

VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory

williamlimasilva/api-patterns

Name: api-patterns
Author: williamlimasilva

skills/api-patterns/SKILL.md

npx skillsauth add williamlimasilva/.copilot api-patterns

Clean

TrivyContainer and dependency vulnerability scanner

Clean

SemgrepStatic code analysis for vulnerabilities

Clean

mcp-scan (Snyk)Model Context Protocol security validation

Skipped

Snyk (dep)Open source security scanning

Skipped

Socket.devSupply chain security analysis

Skipped

VirusTotalMulti-engine malware detection

Skipped

CrowdStrikeAdvanced threat intelligence

Skipped

OSV-ScannerOpen Source Vulnerability database check

Skipped

OWASP Dep-Check

API Patterns

API design principles and decision-making for 2025. Learn to THINK, not copy fixed patterns.

🎯 Selective Reading Rule

Read ONLY files relevant to the request! Check the content map, find what you need.

📑 Content Map

| File | Description | When to Read | |------|-------------|--------------| | api-style.md | REST vs GraphQL vs tRPC decision tree | Choosing API type | | rest.md | Resource naming, HTTP methods, status codes | Designing REST API | | response.md | Envelope pattern, error format, pagination | Response structure | | graphql.md | Schema design, when to use, security | Considering GraphQL | | trpc.md | TypeScript monorepo, type safety | TS fullstack projects | | versioning.md | URI/Header/Query versioning | API evolution planning | | auth.md | JWT, OAuth, Passkey, API Keys | Auth pattern selection | | rate-limiting.md | Token bucket, sliding window | API protection | | documentation.md | OpenAPI/Swagger best practices | Documentation | | security-testing.md | OWASP API Top 10, auth/authz testing | Security audits |

🔗 Related Skills

| Need | Skill | |------|-------| | API implementation | @[skills/backend-development] | | Data structure | @[skills/database-design] | | Security details | @[skills/security-hardening] |

✅ Decision Checklist

Before designing an API:

[ ] Asked user about API consumers?
[ ] Chosen API style for THIS context? (REST/GraphQL/tRPC)
[ ] Defined consistent response format?
[ ] Planned versioning strategy?
[ ] Considered authentication needs?
[ ] Planned rate limiting?
[ ] Documentation approach defined?

❌ Anti-Patterns

DON'T:

Default to REST for everything
Use verbs in REST endpoints (/getUsers)
Return inconsistent response formats
Expose internal errors to clients
Skip rate limiting

DO:

Choose API style based on context
Ask about client requirements
Document thoroughly
Use appropriate status codes

Script

| Script | Purpose | Command | |--------|---------|---------| | scripts/api_validator.py | API endpoint validation | python scripts/api_validator.py <project_path> |

williamlimasilva/api-patterns

skills/api-patterns/SKILL.md

API design principles and decision-making. REST vs GraphQL vs tRPC selection, response formats, versioning, pagination.

development

Updated Apr 25, 2026

$ install --global

skillsauth

npx skillsauth add williamlimasilva/.copilot api-patterns

Install this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.

Security Scan Results

3 of 9 scanners reported clean

Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.

Scanners Passed

Scanners in report

Clean

TrivyContainer and dependency vulnerability scanner

95%

Clean

SemgrepStatic code analysis for vulnerabilities

95%

Clean

mcp-scan (Snyk)Model Context Protocol security validation

95%

Skipped

Snyk (dep)Open source security scanning

50%

Skipped

Socket.devSupply chain security analysis

50%

Skipped

VirusTotalMulti-engine malware detection

50%

Skipped

CrowdStrikeAdvanced threat intelligence

50%

Skipped

OSV-ScannerOpen Source Vulnerability database check

50%

Skipped

OWASP Dep-Check

50%

Last scanned: Mar 29, 2026, 12:42 PM37.0s12 files scanned

SKILL.md

name:: api-patterns
description:: API design principles and decision-making. REST vs GraphQL vs tRPC selection, response formats, versioning, pagination.
allowed-tools:: Read, Write, Edit, Glob, Grep

API Patterns

API design principles and decision-making for 2025. Learn to THINK, not copy fixed patterns.

🎯 Selective Reading Rule

Read ONLY files relevant to the request! Check the content map, find what you need.

📑 Content Map

🔗 Related Skills

| Need | Skill | |------|-------| | API implementation | @[skills/backend-development] | | Data structure | @[skills/database-design] | | Security details | @[skills/security-hardening] |

✅ Decision Checklist

Before designing an API:

[ ] Asked user about API consumers?
[ ] Chosen API style for THIS context? (REST/GraphQL/tRPC)
[ ] Defined consistent response format?
[ ] Planned versioning strategy?
[ ] Considered authentication needs?
[ ] Planned rate limiting?
[ ] Documentation approach defined?

❌ Anti-Patterns

DON'T:

Default to REST for everything
Use verbs in REST endpoints (/getUsers)
Return inconsistent response formats
Expose internal errors to clients
Skip rate limiting

DO:

Choose API style based on context
Ask about client requirements
Document thoroughly
Use appropriate status codes

Script

| Script | Purpose | Command | |--------|---------|---------| | scripts/api_validator.py | API endpoint validation | python scripts/api_validator.py <project_path> |

Related Skills

williamlimasilva/from-the-other-side-wiggins

tools

VerifiedTrustedCommunity

Narrative and synthesis profile for Wiggins: framing, explanation, and audience-aware communication patterns for Ember sessions.

SKILL.mdUpdated May 29, 2026

williamlimasilva/from-the-other-side-wiggins

williamlimasilva/from-the-other-side-quinn

tools

VerifiedTrustedCommunity

Collaboration profile for Quinn: curious, energetic, and implementation-focused partnership patterns for Ember sessions with Alison.

SKILL.mdUpdated May 29, 2026

williamlimasilva/from-the-other-side-quinn

williamlimasilva/from-the-other-side-anitta

development

VerifiedTrustedCommunity

Rigorous challenge profile for Anitta: assumption checks, evidence calibration, and defensible reasoning patterns for Ember collaboration.

SKILL.mdUpdated May 29, 2026

williamlimasilva/from-the-other-side-anitta

williamlimasilva/conventional-branch

testing

VerifiedTrustedCommunity

Create Git branches following the Conventional Branch specification (feature/, bugfix/, hotfix/, release/, chore/). Use when creating a new branch, naming a branch, or checking whether a branch name complies with the spec.

SKILL.mdUpdated May 29, 2026

williamlimasilva/conventional-branch

Download

For Claude Desktop. Download once, then upload the file in the app — no terminal needed.

Need help? View full Cowork setup guide →

Install manually

Choose your platform

# Clone the repo
git clone https://github.com/williamlimasilva/.copilot.git

# Copy into Claude Code skills folder (global)
cp -r .copilot/skills/api-patterns ~/.claude/skills/

Claude Code Skills — official skills path docs.

Repository

williamlimasilva/.copilot

Compatible with

Claude Code

OpenAI Codex CLI

ChatGPT