Detect API security vulnerabilities including injection, broken auth, and data exposure. Use when scanning APIs for security vulnerabilities. Trigger with phrases like "scan API security", "check for vulnerabilities", or "audit API security".
4.0
Rating
0
Installs
Security
Category
The skill has a clear structure with separate reference files, but suffers from a critical mismatch between its stated purpose (API security vulnerability scanning) and its actual content (API development/implementation). The description promises security scanning capabilities (injection detection, broken auth, data exposure), but the instructions focus on API development tasks like creating endpoints, models, and middleware. The descriptionCoverage score is low because a CLI agent would be confused about whether to scan existing APIs for vulnerabilities or build new API infrastructure. TaskKnowledge is moderate as it does provide development steps and references implementation files, though these don't align with security scanning. Structure is good with proper use of reference files. Novelty is moderate since API security scanning could be valuable, but the actual implementation appears to be generic API development guidance rather than specialized security tooling. The skill needs significant revision to either focus on security scanning (as described) or API development (as implemented).
jeremylongshore
Skill Author
Loading SKILL.md…
