Implement secure API design patterns including authentication, authorization, input validation, rate limiting, and protection against common API vulnerabilities
49
—
Does it follow best practices?
Impact
92%
1.37xAverage score across 1 eval scenario
Passed
No known issues
API security middleware setup
General rate limiting
62%
100%
Stricter auth rate limit
100%
100%
Redis or distributed store
0%
0%
Standard rate limit headers
100%
100%
Helmet frameguard deny
0%
100%
Helmet HSTS config
62%
100%
Helmet CSP and other headers
100%
100%
Zod schema validation
70%
100%
HTML sanitization library
100%
100%
Sanitization allowlist
0%
100%
CORS trusted origins only
100%
100%
No CORS disabled
100%
100%
2aaaf59
Table of Contents
If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.