Lists multiple specific concrete actions: 'execute custom queries', 'query findings, projects, packages, or metrics', 'run API filters'. Also specifies what it does NOT do (scanning, dependency checks, finding display), which adds clarity.

Clearly answers both 'what' (execute custom queries against the Endor Labs API) and 'when' (explicit 'Use when...' clause with multiple trigger scenarios). Also includes explicit 'Do NOT use' guidance for disambiguation.

Excellent coverage of natural trigger terms: 'endor api', 'raw api query', 'custom query', 'list resources', 'API filters', plus domain objects like 'findings', 'projects', 'packages', 'metrics'. These are terms users would naturally say.

Exceptionally distinctive due to the explicit 'Do NOT use for...' clause that delineates boundaries against related endor skills (endor-scan, endor-check, endor-findings). The trigger terms like 'raw api query' and 'custom query' are highly specific to this skill's niche.

Generally efficient with good use of tables, but includes some unnecessary structure like the 'Step 1: Understand the Query' section which tells Claude to parse user requests—something it inherently does. The presentation format template in Step 4 is also somewhat unnecessary.

Provides concrete, executable CLI commands with real flag syntax, specific filter examples with actual field paths, exact MCP tool names, and real resource type names. The filter syntax section with examples is copy-paste ready.

Steps are clearly sequenced and the workflow is logical, but there's no validation checkpoint—no step to verify the query returned expected results or handle malformed responses. The error handling table is present but disconnected from the workflow steps rather than integrated as checkpoints.

Well-structured with clear sections, appropriate use of tables for reference data, and one-level-deep references to external files (references/cli-parsing.md, references/data-sources.md) that are clearly signaled with context about what they contain.