This is a high-risk skill that treats FastAPI development as a security discipline first. It ships with CVE documentation (including CVE-2024-47874 and Starlette DoS fixes), enforces TDD workflows, and provides concrete patterns for JWT auth, rate limiting, and file uploads. The validation gates require vulnerability research before use, which is unusually thorough. You get opinionated defaults like disabling API docs in production, magic-byte file validation instead of trusting extensions, and strict CORS configurations. It's built for teams who've been burned by injection attacks or DoS incidents and want guardrails that prevent the common mistakes. Good for greenfield APIs where security can't be bolted on later.
npx skills add https://github.com/martinholovsky/claude-skills-generator --skill fastapi