Can it help with payment initiation?

Yes, it identifies mandatory FAPI flows required for payment initiation to ensure requests are not rejected by ASPSPs for non-compliance.

Does this skill support UK Open Banking standards?

Yes, it includes specific patterns for UK Open Banking standards, including FAPI 1.0 Advanced, PAR, and JARM implementation.

Does it include code for consent renewal?

It features TypeScript patterns for proactive token renewal and expiration scheduling to prevent service interruptions when banking consents expire.

How does it handle token security?

It provides patterns for mTLS-bound tokens and explicitly guides developers to use KMS-based encryption for storing access and refresh tokens.

Open Banking Patterns

Name: Open Banking Patterns
Author: HermeticOrmus

byHermeticOrmus

0•

API 개발

Implements secure, compliant Open Banking integrations and consent lifecycle management using FAPI standards.

This skill provides a specialized framework for developers building fintech applications that interact with financial institution APIs. It offers standardized patterns for FAPI 1.0 Advanced authorization flows, secure consent persistence, proactive token renewal, and idempotent webhook handling. By enforcing best practices and identifying common anti-patterns—such as plaintext token storage or non-compliant payment flows—it ensures that applications meet the rigorous security requirements of UK Open Banking, PSD2, and the Berlin Group standards.

주요 기능

01Detailed identification of fintech-specific security anti-patterns

02Secure webhook handling with JWS signature verification

030 GitHub stars

04FAPI 1.0 Advanced Authorization implementation guidance

05Consent lifecycle management and persistence patterns

06Proactive access token renewal and refresh logic

사용 사례

01Implementing secure payment initiation flows that comply with PSD2 and FAPI

02Automating consent revocation and renewal workflows for financial applications

03Building TPP (Third Party Provider) infrastructure for account information services

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add hermeticormus/librefintech-claude-code open-banking-patterns

For use in Claude.ai and ChatGPT

주요 기능

01Detailed identification of fintech-specific security anti-patterns

02Secure webhook handling with JWS signature verification

030 GitHub stars

04FAPI 1.0 Advanced Authorization implementation guidance

05Consent lifecycle management and persistence patterns

06Proactive access token renewal and refresh logic

사용 사례

01Implementing secure payment initiation flows that comply with PSD2 and FAPI

02Automating consent revocation and renewal workflows for financial applications

03Building TPP (Third Party Provider) infrastructure for account information services

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add hermeticormus/librefintech-claude-code open-banking-patterns

For use in Claude.ai and ChatGPT