CtrlK
BlogDocsLog inGet started
Tessl Logo

api-security-best-practices

Implement secure API design patterns including authentication, authorization, input validation, rate limiting, and protection against common API vulnerabilities

49

1.37x
Quality

Does it follow best practices?

Impact

92%

1.37x

Average score across 1 eval scenario

SecuritybySnyk

Passed

No known issues

SKILL.md
Quality
Evals
Security

Evaluation results

92%

25%

Hardening a Public-Facing API

API security middleware setup

Criteria
Without context
With context

General rate limiting

62%

100%

Stricter auth rate limit

100%

100%

Redis or distributed store

0%

0%

Standard rate limit headers

100%

100%

Helmet frameguard deny

0%

100%

Helmet HSTS config

62%

100%

Helmet CSP and other headers

100%

100%

Zod schema validation

70%

100%

HTML sanitization library

100%

100%

Sanitization allowlist

0%

100%

CORS trusted origins only

100%

100%

No CORS disabled

100%

100%

Repository
sickn33/antigravity-awesome-skills
Evaluated
Agent
Claude Code
Model
Claude Sonnet 4.6

Table of Contents

Is this your skill?

If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.