API Guidelines Skill

Overview

This skill provides comprehensive guidelines for building secure, consistent, and modern API endpoints in Next.js applications using TypeScript, with MariaDB as the database.

Core Principles

1. Security First

• Always validate session tokens
• Always check permissions before executing actions
• Never expose sensitive data in responses
• Always sanitize and validate user input
• Always use parameterized queries to prevent SQL injection

2. Consistency

• Use consistent naming conventions
• Follow RESTful principles
• Maintain consistent error handling
• Use standard HTTP status codes