extract-openapi-from-code
Generates OpenAPI specifications from existing API code across multiple frameworks, enabling better documentation and SDK creation.
Install this skill
or
78/100
Security score
The extract-openapi-from-code skill was audited on Feb 27, 2026 and we found 10 security issues across 2 threat categories. Review the findings below before installing.
Categories Tested
Security Issues
medium line 133
Curl to non-GitHub URL
SourceSKILL.md
| 133 | curl http://localhost:8080/v3/api-docs -o openapi.json |
medium line 136
Curl to non-GitHub URL
SourceSKILL.md
| 136 | curl http://localhost:8080/v3/api-docs.yaml -o openapi.yaml |
medium line 154
Curl to non-GitHub URL
SourceSKILL.md
| 154 | curl http://localhost:3000/api-json -o openapi.json |
low line 88
External URL reference
SourceSKILL.md
| 88 | You can also start the server and fetch from `http://localhost:8000/openapi.json`. |
low line 92
External URL reference
SourceSKILL.md
| 92 | Requires [flask-smorest](https://flask-smorest.readthedocs.io/) or [apispec](https://apispec.readthedocs.io/): |
low line 110
External URL reference
SourceSKILL.md
| 110 | Requires [drf-spectacular](https://drf-spectacular.readthedocs.io/): |
low line 124
External URL reference
SourceSKILL.md
| 124 | Requires [springdoc-openapi](https://springdoc.org/). Start the application, then fetch the spec: |
low line 133
External URL reference
SourceSKILL.md
| 133 | curl http://localhost:8080/v3/api-docs -o openapi.json |
low line 136
External URL reference
SourceSKILL.md
| 136 | curl http://localhost:8080/v3/api-docs.yaml -o openapi.yaml |
low line 154
External URL reference
SourceSKILL.md
| 154 | curl http://localhost:3000/api-json -o openapi.json |
Scanned on Feb 27, 2026
View Security Dashboard