api-contract-testing

Verifies API contracts using consumer-driven contracts and schema validation, ensuring reliable microservices communication.

Install this skill

87/100

Security score

The api-contract-testing skill was audited on May 12, 2026 and we found 5 security issues across 3 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 47

Template literal with variable interpolation in command context

SourceSKILL.md

47	const response = await fetch(`${mockServer.url}/users/123`);

medium line 64

Template literal with variable interpolation in command context

SourceSKILL.md

64	const response = await fetch(`${mockServer.url}/users/999`);

low line 79

Access to .env file

SourceSKILL.md

79	pactBrokerUrl: process.env.PACT_BROKER_URL,

low line 81

Access to .env file

SourceSKILL.md

81	providerVersion: process.env.GIT_SHA,

low line 78

External URL reference

SourceSKILL.md

78	providerBaseUrl: 'http://localhost:3000',

Scanned on May 12, 2026

View Security Dashboard

Installation guide →

GitHub Stars 73

Rate this skill

Categorydevelopment

UpdatedMay 13, 2026

frontend git api testing devops mobile backend backend-developer qa-engineer devops-sre data-engineer product-manager development product

secondsky/claude-skills