governing-tenant-routes
OfficialSecure multi-tenant API route governance.
Software Engineering#multi-tenancy#api gateway#api security#tenant isolation#route governance#bola prevention
Authormusher-dev
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill addresses the critical security and architectural challenges in designing, reviewing, and auditing multi-tenant API routes to prevent data breaches, ensure tenant isolation, and maintain system integrity.
Core Features & Use Cases
- Path-Derived Tenant Context: Enforces explicit tenant identification in API paths for enhanced security and observability.
- Dual-Validation Middleware: Implements a robust two-step verification process for API keys and requested tenant context.
- Endpoint Classification: Clearly separates global and tenant-scoped endpoints to prevent unauthorized access.
- Use Case: When designing a new set of APIs for a SaaS platform, use this Skill to ensure all tenant-specific data is accessed through secure, well-defined routes like
/api/v1/organizations/{org_slug}/..., preventing BOLA vulnerabilities.
Quick Start
Review the provided API route design against the six dimensions of governance outlined in the documentation.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: governing-tenant-routes Download link: https://github.com/musher-dev/bundles/archive/main.zip#governing-tenant-routes Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.