PluginBench
Skill
Pass
Audit score 90

api-design-principles

wshobson/agents

Master REST and GraphQL API design principles to build intuitive, scalable, and maintainable APIs.

What is api-design-principles?

This skill teaches core REST and GraphQL design principles, versioning strategies, and best practices for building developer-friendly APIs. Use it when designing new APIs, reviewing specifications, establishing team standards, or migrating between API paradigms.

  • Apply resource-oriented architecture and HTTP method semantics for REST APIs
  • Design schema-first GraphQL APIs with queries, mutations, and subscriptions
  • Implement API versioning strategies (URL, header, query parameter)
  • Establish consistent naming conventions and error response formats
  • Apply pagination, rate limiting, and authentication patterns
  • Avoid common pitfalls like over-fetching, breaking changes, and tight coupling

How to install api-design-principles

npx skills add https://github.com/wshobson/agents --skill api-design-principles
Claude Code
Cursor
Windsurf
Cline

How to use api-design-principles

  1. 1.Review the core concepts section to understand REST resource-oriented architecture and GraphQL schema-first design
  2. 2.Choose your API paradigm (REST or GraphQL) and study the relevant best practices
  3. 3.Apply consistent naming conventions and HTTP semantics to your API design
  4. 4.Plan your versioning strategy before implementation
  5. 5.Document your API using OpenAPI/Swagger (REST) or introspection (GraphQL)
  6. 6.Implement pagination, rate limiting, and error handling according to the patterns provided
  7. 7.Reference the common pitfalls section during design review to catch issues early

Use cases

Good for
  • Designing a new REST API for a web service or mobile app
  • Migrating from REST to GraphQL to reduce over-fetching
  • Establishing API design standards and guidelines for a development team
  • Reviewing and refactoring existing APIs for better usability and consistency
  • Planning API versioning strategy before implementation to handle future breaking changes
Who it's for
  • Backend engineers designing or refactoring APIs
  • API architects establishing standards and governance
  • Full-stack developers building client-server applications
  • Technical leads reviewing API specifications
  • Teams migrating between API paradigms

api-design-principles FAQ

Should I use REST or GraphQL?

REST is simpler for straightforward CRUD operations and caching. GraphQL excels when clients need flexible data queries and you want to reduce over-fetching. Consider your use case: mobile apps benefit from GraphQL's efficiency, while public APIs often work well with REST.

How do I handle breaking changes in my API?

Plan versioning from day one using URL versioning (/api/v1, /api/v2), header versioning, or query parameters. For GraphQL, use the @deprecated directive for gradual migration. Always communicate deprecation timelines to API consumers.

What's the difference between PUT and PATCH?

PUT replaces the entire resource (idempotent), while PATCH applies partial updates. Use PUT when you want to replace the full resource and PATCH for incremental changes. Both are idempotent but have different semantics.

How do I avoid N+1 query problems in GraphQL?

Use DataLoaders to batch database queries. DataLoaders collect all requested items during a resolver execution phase and fetch them in a single query, dramatically improving performance.

What HTTP status codes should I use?

Use 2xx for success (200 OK, 201 Created), 4xx for client errors (400 Bad Request, 404 Not Found, 429 Too Many Requests), and 5xx for server errors (500 Internal Server Error). Always match the code to the actual error condition.

Full instructions (SKILL.md)

Source of truth, from wshobson/agents.


name: api-design-principles description: Master REST and GraphQL API design principles to build intuitive, scalable, and maintainable APIs that delight developers. Use when designing new APIs, reviewing API specifications, or establishing API design standards.

API Design Principles

Master REST and GraphQL API design principles to build intuitive, scalable, and maintainable APIs that delight developers and stand the test of time.

When to Use This Skill

  • Designing new REST or GraphQL APIs
  • Refactoring existing APIs for better usability
  • Establishing API design standards for your team
  • Reviewing API specifications before implementation
  • Migrating between API paradigms (REST to GraphQL, etc.)
  • Creating developer-friendly API documentation
  • Optimizing APIs for specific use cases (mobile, third-party integrations)

Core Concepts

1. RESTful Design Principles

Resource-Oriented Architecture

  • Resources are nouns (users, orders, products), not verbs
  • Use HTTP methods for actions (GET, POST, PUT, PATCH, DELETE)
  • URLs represent resource hierarchies
  • Consistent naming conventions

HTTP Methods Semantics:

  • GET: Retrieve resources (idempotent, safe)
  • POST: Create new resources
  • PUT: Replace entire resource (idempotent)
  • PATCH: Partial resource updates
  • DELETE: Remove resources (idempotent)

2. GraphQL Design Principles

Schema-First Development

  • Types define your domain model
  • Queries for reading data
  • Mutations for modifying data
  • Subscriptions for real-time updates

Query Structure:

  • Clients request exactly what they need
  • Single endpoint, multiple operations
  • Strongly typed schema
  • Introspection built-in

3. API Versioning Strategies

URL Versioning:

/api/v1/users
/api/v2/users

Header Versioning:

Accept: application/vnd.api+json; version=1

Query Parameter Versioning:

/api/users?version=1

Detailed patterns and worked examples

Detailed pattern documentation lives in references/details.md. Read that file when the navigation tier above is insufficient.

Best Practices

REST APIs

  1. Consistent Naming: Use plural nouns for collections (/users, not /user)
  2. Stateless: Each request contains all necessary information
  3. Use HTTP Status Codes Correctly: 2xx success, 4xx client errors, 5xx server errors
  4. Version Your API: Plan for breaking changes from day one
  5. Pagination: Always paginate large collections
  6. Rate Limiting: Protect your API with rate limits
  7. Documentation: Use OpenAPI/Swagger for interactive docs

GraphQL APIs

  1. Schema First: Design schema before writing resolvers
  2. Avoid N+1: Use DataLoaders for efficient data fetching
  3. Input Validation: Validate at schema and resolver levels
  4. Error Handling: Return structured errors in mutation payloads
  5. Pagination: Use cursor-based pagination (Relay spec)
  6. Deprecation: Use @deprecated directive for gradual migration
  7. Monitoring: Track query complexity and execution time

Common Pitfalls

  • Over-fetching/Under-fetching (REST): Fixed in GraphQL but requires DataLoaders
  • Breaking Changes: Version APIs or use deprecation strategies
  • Inconsistent Error Formats: Standardize error responses
  • Missing Rate Limits: APIs without limits are vulnerable to abuse
  • Poor Documentation: Undocumented APIs frustrate developers
  • Ignoring HTTP Semantics: POST for idempotent operations breaks expectations
  • Tight Coupling: API structure shouldn't mirror database schema