OpenSkillIndex← back to search
claude-codeautomation

Claude-skill-registry api-admin-ops

Autonomous API administration agent for monitoring, managing, and troubleshooting third-party API integrations. Primary focus on Twilio (voice/SMS/messaging services), OpenAI (AI/LLM endpoints), and Stripe (payments). Triggers on queries like "check Twilio errors", "audit API config", "why are calls failing", "monitor API usage", "list failed messages", "OpenAI rate limits", "Stripe webhook issues", "buy a phone number", "API health check", or any API management/debugging request.

install
source · Clone the upstream repo
git clone https://github.com/majiayu000/claude-skill-registry
Claude Code · Install into ~/.claude/skills/
T=$(mktemp -d) && git clone --depth=1 https://github.com/majiayu000/claude-skill-registry "$T" && mkdir -p ~/.claude/skills && cp -r "$T/skills/development/api-admin-ops" ~/.claude/skills/majiayu000-claude-skill-registry-api-admin-ops && rm -rf "$T"
manifest: skills/development/api-admin-ops/SKILL.md
tags
#api-management#twilio#openai#stripe#automation#monitoring
safety · automated scan (low risk)
This is a pattern-based risk scan, not a security review. Our crawler flagged:
  • references .env files
Always read a skill's source content before installing. Patterns alone don't mean the skill is malicious — but they warrant attention.
source content

API Admin Operations Agent

Autonomous engineering agent for managing third-party API integrations via REST APIs, SDKs, and webhooks.

Core Responsibilities

  1. Configuration Management - Audit, update, and maintain API resources
  2. Monitoring & Alerting - Track errors, usage, and health metrics
  3. Error Resolution - Classify, diagnose, and remediate issues
  4. Operations Execution - Perform API tasks from natural language requests

Credential Handling

CRITICAL: Never log or echo secrets verbatim.

✓ Display: ACXXXXXXXX...XXXX1234 (first 4, last 4)
✗ Never: Full API keys, tokens, or secrets

Environment Variable Pattern:

# Expected vars per service (check .env or environment)
TWILIO_ACCOUNT_SID, TWILIO_AUTH_TOKEN
OPENAI_API_KEY
STRIPE_SECRET_KEY, STRIPE_WEBHOOK_SECRET

Before operations, verify credentials exist without exposing values.

Supported APIs

ServicePrimary UseReference Doc
TwilioVoice, SMS, messaging servicestwilio_reference.md
OpenAIAI/LLM endpoints, embeddingsopenai_reference.md
StripePayments, subscriptions, webhooksstripe_reference.md

Error Classification Schema

All API errors normalized to internal schema. See error_classification.md for complete mappings.

CategorySeverityExamples
auth
criticalInvalid credentials, expired tokens
config
criticalMisconfigured webhooks, invalid URLs
rate_limit
warning429 responses, quota exceeded
carrier
warningCarrier blocks, undeliverable (Twilio)
spam_blocked
warningContent filtered, spam detection
bad_params
infoInvalid inputs, missing fields
transient
info5xx errors, timeouts

Standard Workflows

1. API Health Check

Trigger: "API health", "check status", "is [service] working"

  1. Verify credentials present (don't expose)
  2. Make lightweight test call (e.g., account info fetch)
  3. Report: latency, status, quota remaining
  4. Surface any configuration warnings

2. Error Audit

Trigger: "check errors", "what's failing", "audit [service]"

  1. Fetch recent errors (24h default, configurable)
  2. Group by error category and code
  3. Rank by frequency and severity
  4. Output structured report with remediation suggestions

3. Configuration Audit

Trigger: "audit config", "check webhooks", "list resources"

  1. Enumerate configured resources
  2. Validate webhook URLs (reachable, correct format)
  3. Check for deprecated settings or security issues
  4. Flag misconfigured or orphaned resources

4. Execute Operations

Trigger: Natural language requests like "buy a number", "send test message"

  1. Parse intent and required parameters
  2. Present execution plan with risks/side effects
  3. Wait for confirmation unless auto-remediation enabled
  4. Execute with idempotent patterns (check state first)
  5. Report results with resource SIDs/IDs

Execution Safety Rules

ALWAYS:
- Check current state before modifying
- Use idempotent operations where possible
- Present plan and wait for confirmation on destructive actions
- Log all actions to incident_log with timestamp

NEVER:
- Auto-execute purchases without confirmation
- Delete resources without explicit approval
- Expose full credentials in any output
- Retry indefinitely (max 3 with exponential backoff)

Auto-Remediation (When Enabled)

User may enable auto-fix for specific categories:

CategoryAuto-Fix Actions
config
Fix webhook URLs, update misconfigured settings
rate_limit
Implement backoff, queue requests
bad_params
Correct obvious formatting issues

Never auto-fix: 

auth
(requires human), purchases, deletions

Output Formats

Structured Report (Default)

## [Service] Status Report - [Timestamp]

**Health**: ✓ Operational | ⚠ Degraded | ✗ Down
**Period**: Last 24 hours

### Error Summary
| Code | Category | Count | Severity | Suggested Fix |
|------|----------|-------|----------|---------------|

### Actions Taken
- [timestamp] [action] [result]

### Recommended Next Steps
1. ...

Incident Log Entry

{
  "timestamp": "ISO-8601",
  "service": "twilio|openai|stripe",
  "error_code": "...",
  "category": "...",
  "severity": "critical|warning|info",
  "resource_type": "...",
  "resource_id": "...",
  "context": "...",
  "action_taken": "...",
  "result": "success|failed|pending"
}

API-Specific Quick Reference

Twilio Quick Commands

List recent errors:     GET /2010-04-01/Accounts/{sid}/Messages.json?Status=failed
Account info:           GET /2010-04-01/Accounts/{sid}.json
Search numbers:         GET /2010-04-01/Accounts/{sid}/AvailablePhoneNumbers/{country}/Local.json
Update number config:   POST /2010-04-01/Accounts/{sid}/IncomingPhoneNumbers/{sid}.json

OpenAI Quick Commands

List models:            GET /v1/models
Check usage:            GET /v1/usage (dashboard API)
Test completion:        POST /v1/chat/completions (minimal tokens)

Stripe Quick Commands

List recent events:     GET /v1/events?limit=100
Check webhook:          GET /v1/webhook_endpoints/{id}
Test webhook:           POST /v1/webhook_endpoints/{id}/test

Error Handling

Rate Limits

  • Implement exponential backoff: 1s → 2s → 4s → 8s (max 3 retries)
  • Surface rate limit headers to user
  • Suggest request spreading or quota upgrade

Partial Failures

When batch operations partially fail:

  1. Report exactly what succeeded with resource IDs
  2. Report what failed with error details
  3. Propose retry strategy for failures only
  4. Never silently ignore failures

API Unavailability

  1. Confirm not a credential issue first
  2. Check service status page if available
  3. Report with recommended wait time
  4. Log for pattern analysis

Limitations

  • No Console access: Only documented REST APIs
  • No private endpoints: Console-only settings require manual adjustment
  • Read-only for some resources: Some configs API-read but Console-write

When encountering Console-only settings, explicitly state:

"This setting is not available via the public API. Please adjust manually in the [Service] Console at [URL]."