API Integration Patterns

Trust Score 84/100

Patterns and safe templates for calling external APIs and CLI tools: subprocess safety, retries, auth handling, and rate-limit management.

triggers:subprocessgh cliapi callretry logicrate limitingauthentication

GitHub SKILL.md

What it does

API Integration Patterns provides robust, security-minded patterns for integrating external APIs and CLI tools into agent workflows. It covers subprocess execution safety, GitHub CLI usage, retry/backoff strategies, authentication best practices, and simple rate-limiting helpers. The content is aimed at library authors and agent integrators to reduce common errors and security risks.

When to use it

When implementing external API calls or running CLI tools from an agent
When you need secure subprocess execution (prevent command injection)
When adding retry and backoff for transient failures
When handling credentials and tokens safely
When managing rate limits to avoid quota exhaustion

What's included

Scripts: none in the skill dir, but the repo contains templates and examples (templates/, examples/)
References: documentation-style patterns and example code snippets embedded in the skill body
Instructions: concrete code patterns for safe subprocess calls, gh CLI wrappers, retry_with_backoff helper, get_github_token pattern, and a simple RateLimiter class.

Compatible agents

Best for agents that execute external commands or interact with cloud APIs (Claude Code, Copilot/Codex-style assistants, any agent with subprocess/gh CLI access). The patterns are language-agnostic but illustrated in Python and shell for immediate use.

Audit Summary

API Integration Patterns provides safe subprocess execution, retry logic, authentication, and rate limiting templates for external API integrations. The SKILL.md is well-written with thorough docstrings and type hints, but references multiple supporting files (docs/, templates/, examples/) that don't exist in the skill package — it's entirely self-contained. Code patterns are solid and follow security best practices (CWE-78 prevention, env-based auth, command whitelisting).

Watch Out

Referenced docs/, templates/, and examples/ directories don't exist in the skill package
Token validation only checks GitHub token prefixes (ghp_, github_pat_) which may reject valid tokens from GitHub Apps or other formats

Notes

Clean security posture — actively promotes safe patterns. Main issue is aspirational file references that don't exist, making progressive disclosure claims misleading. Skill is essentially a well-organized reference document rather than a functional skill with runnable scripts.

Information

Repository: autonomous-dev
Stars: 22
Installs: 0

Trust Score

Overall84

Security95

Code Quality78

Architecture68

Usefulness65

Related Skills

Bounty Hunter — Atlas

Persona skill: 'Atlas' — a profit-focused developer persona for discovering, evaluating and executing paid bounties or freelance tasks with ROI-aware workflows.

TradeOS

Natural-language driven CEX trading and portfolio management for agents: API key vaulting, multi-exchange orders, DCA, arbitrage scanning, alerts and security r

ezBookkeeping API Tools

Command-line API tools for ezBookkeeping: record and query transactions, retrieve accounts/categories/tags, and fetch exchange rates for self-hosted personal fi

Spring Boot Migration

Guided, phased migration for existing Spring Boot apps to Boot 4 / Java 25 (including Modulith 2 and Testcontainers 2), with scanners and reference guides.

Java 25 & Spring Boot 4 Code Reviewer

Run focused, evidence-based code reviews for Java 25 and Spring Boot 4 projects — migration risks, architecture boundaries, null-safety (JSpecify), security, an

ArcKit — French Public Procurement (fr-marche-public)

Generates French public procurement (Dossier de Consultation des Entreprises) drafts aligned with the Code de la Commande Publique, UGAP frameworks, and DINUM d

ArcKit Architecture Conformance

Run a systematic architecture conformance assessment that compares ADRs and principles against HLD/DLD artifacts to surface drift, violations, and technical deb

Speak Security Basics

Security best practices for integrating Speak: API key management, audio data privacy, student data protection, and COPPA/FERPA compliance for production deploy

Back to Skills