⚙️

senior-backend

Name: senior-backend
Author: davila7

Sûr ⚙️ Commandes externes📁 Accès au système de fichiers🌐 Accès réseau

Construa Sistemas Backend Prontos para Produção com Orientação Especializada

Également disponible depuis: alirezarezvani

O desenvolvimento de backend requer expertise em APIs, bancos de dados, segurança e arquitetura escalável. Esta habilidade oferece orientação de nível superior para construir aplicações robustas do lado do servidor com as melhores práticas da indústria.

Prend en charge: Claude Codex Code(CC)

🥈 78 Argent

Télécharger le ZIP du skill

Importer dans Claude

Allez dans Paramètres → Capacités → Skills → Importer un skill

Activez et commencez à utiliser

Tester

Utilisation de "senior-backend". Design a rate limiting strategy for my public API

Résultat attendu:

Recommended strategy: Token bucket algorithm with Redis backend
Configuration: 100 requests per minute per API key, 1000 per hour
Implementation: Middleware checks Redis counter before processing request
Response headers: X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Reset
Error handling: Return 429 Too Many Requests with Retry-After header
Tiered limits: Different quotas for free, premium, and enterprise tiers

Utilisation de "senior-backend". Help me optimize this slow JOIN query across three tables

Résultat attendu:

Analysis: Missing composite index on foreign key columns used in JOIN conditions
Recommendation: Create index on orders(user_id, created_at) for efficient filtering
Query rewrite: Use INNER JOIN instead of subqueries to leverage index optimization
Additional optimization: Add covering index to avoid table lookups for selected columns
Performance estimate: Query time should reduce from 2.3s to under 50ms with proper indexes
Monitoring advice: Use EXPLAIN ANALYZE to verify index usage after implementation

Utilisation de "senior-backend". Generate scaffolding for a new microservice with authentication

Résultat attendu:

Project structure created with controllers, services, models, and middleware directories
Authentication module with JWT generation, validation, and refresh token logic
Database connection setup with connection pooling and error handling
Environment configuration template for database credentials and JWT secrets
Docker compose file for local development with database and Redis containers
API documentation template with OpenAPI specification and example endpoints

Audit de sécurité

Sûr

v5 • 1/17/2026

After evaluating all 84 static findings, this skill is SAFE. The vast majority of detections are false positives from documentation and reference materials containing example code snippets. The backtick patterns are from markdown code blocks, not executable Ruby commands. The MD5 references are educational examples showing weak algorithms to avoid. The Python scripts are legitimate development utilities that write local files for scaffolding purposes.

Fichiers analysés

1,151

Lignes analysées

résultats

Total des audits

Facteurs de risque

⚙️ Commandes externes

Aucun emplacement spécifique enregistré

📁 Accès au système de fichiers (3)

scripts/api_load_tester.py:1-150 scripts/api_scaffolder.py:1-150 scripts/database_migration_tool.py:1-150

🌐 Accès réseau

Aucun emplacement spécifique enregistré

Audité par: claude Voir l’historique des audits →

Score de qualité

Architecture

100

Maintenabilité

Contenu

Communauté

100

Sécurité

Conformité aux spécifications

Ce que vous pouvez construire

API Architecture Review and Optimization

Review existing API designs for scalability issues and receive recommendations for caching, rate limiting, and versioning strategies.

Database Performance Troubleshooting

Analyze slow queries, design optimal indexes, and implement query optimization strategies for relational and NoSQL databases.

Security Audit and Best Practices Implementation

Implement authentication flows, secure credential management, input validation, and protection against common backend vulnerabilities.

Essayez ces prompts

Basic API Design

Design a REST API endpoint for user registration that includes proper validation, error handling, and security measures. Show me the request and response structure with HTTP status codes.

Database Optimization

My user search query is slow when filtering by multiple fields. Analyze the current query structure and suggest index strategies and query optimizations for PostgreSQL.

Security Implementation

Implement JWT-based authentication for my Node.js API including token generation, refresh token handling, and middleware for protected routes. Include security best practices.

Advanced Architecture

Design a microservices architecture for an e-commerce platform with separate services for inventory, orders, and payments. Include communication patterns, database strategies per service, and fault tolerance mechanisms.

Bonnes pratiques

Always validate and sanitize user input at API boundaries before processing or storing data in databases
Use connection pooling and prepared statements for database queries to improve performance and prevent SQL injection attacks
Implement proper error handling with consistent error response formats and avoid exposing sensitive system information in error messages

Éviter

Avoid storing sensitive credentials or API keys directly in code or version control systems instead of using environment variables or secret management
Do not perform complex business logic or heavy computations directly in database queries when application layer processing is more maintainable
Never skip authentication and authorization checks on internal API endpoints assuming network-level security is sufficient

Foire aux questions

What backend frameworks and languages does this skill support?

This skill provides language-agnostic patterns applicable to Node.js, Python, Java, Go, and other backend technologies with examples adaptable to your stack.

Can this skill help with both SQL and NoSQL database optimization?

Yes, the skill covers optimization strategies for relational databases like PostgreSQL and MySQL as well as NoSQL solutions like MongoDB and Redis.

Does this skill generate production-ready code or just guidance?

It provides both architectural guidance and code generation for scaffolding, utilities, and common patterns that require review before production use.

How does this skill handle security best practices?

It incorporates OWASP guidelines, secure authentication patterns, input validation, and protection against common vulnerabilities like SQL injection and XSS.

Can I use this skill for microservices architecture design?

Yes, the skill covers microservices patterns including service communication, database per service, API gateways, and distributed system considerations.

What types of API design does this skill support?

The skill supports REST, GraphQL, and RPC patterns with guidance on versioning, documentation, rate limiting, and pagination strategies.