Skill Detail

API Patterns

This skill provides API design principles and decision-making guidance. It aims to help you think critically about API design, rather than simply copying patterns.

GitHub:sickn33/antigravity-awesome-skills api-patterns
version 6464877956eb
static analysis only
no human review yet
Use Caution

Current public label

Use Caution

Because the skill's code and documentation reference secrets, it is labeled "use_caution". This means you should carefully review the skill's use of sensitive information.

This label is currently coming from the automated scorecard.

Automated result

Use Caution

Driftloom found that the skill's documentation and code reference secrets or credentials. The static analysis found no other concerning behavior.

1 medium, 3 low Final label: use caution.

Human review

No human review has been recorded yet.

The current public label is still relying on automation. A human has not weighed in yet.

What happened

Driftloom completed a static scan. It inspected the skill files, recorded findings, and generated a scorecard.

Runtime evidence

No sandbox runtime result has been recorded yet.

Driftloom currently recommends runtime testing for this version (priority 35).

What did not happen

  • Driftloom did not run this skill in an isolated sandbox yet.
  • This label is not a guarantee that the skill is safe, bug-free, or appropriate for every environment.
  • A good score does not replace human judgment when a skill touches secrets, shell access, or external systems.

Source provenance

Source: Workspace import

Originally ingested from a local workspace copy.

Scorecard

Safety
67
Quality
100
Transparency
100
Operational
92
Maintenance
76

1 medium, 3 low Final label: use caution.

Severity mix: 1 medium, 3 low

What Driftloom checked

  • Read the skill files and metadata to understand what the skill claims to do.
  • Looked for shell commands and risky command patterns, even if none stood out strongly.
  • Looked for external URLs and network behavior.
  • Looked for secret, token, password, and credential references.
  • Checked whether the skill structure and references looked internally consistent.

Findings

Secret or credential reference detected
secret.reference · safety
Medium

The source references credentials or secret material in executable or configuration context.

File: scripts/api_validator.py
Evidence: token
Secret or credential reference detected
secret.reference · safety
Low

The docs mention credentials or secrets. That may be normal, but it still tells you the skill expects sensitive material somewhere in the workflow.

File: SKILL.md
Evidence: Token
Secret or credential reference detected
secret.reference · safety
Low

The docs mention credentials or secrets. That may be normal, but it still tells you the skill expects sensitive material somewhere in the workflow.

File: rate-limiting.md
Evidence: Token
Secret or credential reference detected
secret.reference · safety
Low

The docs mention credentials or secrets. That may be normal, but it still tells you the skill expects sensitive material somewhere in the workflow.

File: security-testing.md
Evidence: Secret
Driftloom is following the boring, correct architecture: Django control plane first, isolated runner later. Miraculously, restraint survives.