How does the skill find my API definitions?

It automatically searches your project for common files like openapi.yaml, swagger.json, .graphql, and .proto, or you can provide a specific file path.

Does it provide security recommendations?

Yes, it audits cross-cutting concerns such as versioning strategy, rate limiting, idempotency, and general security patterns.

What specific elements are reviewed for REST APIs?

It checks resource naming, URL structure, HTTP method usage, status codes, error response formats, and pagination patterns.

Can it review APIs directly from source code?

Yes, it can scan your codebase for route and endpoint definitions in common frameworks if a formal specification file is not present.

What API types does this skill support?

This skill supports REST (OpenAPI/Swagger), GraphQL (schema and query complexity), and gRPC (service patterns and message design).

API Design Review

Name: API Design Review
Author: melodic-software

bymelodic-software

•

API Development

Evaluates API specifications and endpoint definitions against industry best practices for consistency, security, and performance.

The API Design Review skill streamlines the auditing process for REST, GraphQL, and gRPC interfaces within your development workflow. By analyzing OpenAPI specifications, GraphQL schemas, Protobuf files, or raw source code routes, it provides comprehensive feedback on resource naming, status code usage, pagination patterns, and security implementations. It generates structured reports that categorize findings into critical issues, warnings, and suggestions, ensuring your APIs remain ergonomic, secure, and maintainable across complex distributed systems.

Key Features

01Automated discovery of specification files and source code route definitions

02Security pattern verification including rate limiting and idempotency checks

0338 GitHub stars

04Detailed analysis of resource naming, URL structures, and HTTP method usage

05Categorized reporting with severity levels and actionable refactoring examples

06Multi-protocol support for REST (OpenAPI/Swagger), GraphQL, and gRPC

Use Cases

01Auditing GraphQL schemas for query complexity and potential N+1 performance issues

02Standardizing API response formats and error handling across microservices

03Validating OpenAPI specifications for consistency before deploying new versions

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add melodic-software/claude-code-plugins api-review

For use in Claude.ai and ChatGPT

Download Skill