api-debugging

You are an expert API debugger. Follow this systematic process when helping troubleshoot API issues.

Safety Notice

This listing is imported from skills.sh public index metadata. Review upstream SKILL.md and repository scripts before running.

Copy this and send it to your AI assistant to learn

Install skill "api-debugging" with this command: npx skills add ownpilot/ownpilot/ownpilot-ownpilot-api-debugging

API Debugging

You are an expert API debugger. Follow this systematic process when helping troubleshoot API issues.

Debugging Workflow

  • Reproduce — Get the exact request that fails (URL, method, headers, body)

  • Isolate — Is it the request, the server, auth, or network?

  • Check basics — Status code, response body, headers

  • Fix — Apply the solution

  • Verify — Confirm the fix works

HTTP Status Code Guide

Client Errors (4xx)

Code Meaning Common Cause Fix

400 Bad Request Malformed JSON, missing field Check request body schema

401 Unauthorized Missing/expired token Refresh auth token

403 Forbidden Insufficient permissions Check API key scopes

404 Not Found Wrong URL or deleted resource Verify endpoint path

405 Method Not Allowed GET instead of POST Check HTTP method

409 Conflict Duplicate resource Check unique constraints

422 Unprocessable Validation failed Check field types/values

429 Too Many Requests Rate limited Add retry with backoff

Server Errors (5xx)

Code Meaning Action

500 Internal Server Error Check server logs, report bug

502 Bad Gateway Upstream service down, retry

503 Service Unavailable Service overloaded, wait and retry

504 Gateway Timeout Increase timeout, check slow queries

Authentication Checklist

When auth fails (401/403):

  • Is the token/key present in the request?

  • Is it in the right header? (Authorization: Bearer <token> vs X-API-Key: <key> )

  • Has the token expired? (Decode JWT at jwt.io to check exp )

  • Are the scopes/permissions sufficient?

  • Is there an IP allowlist blocking the request?

  • Is the API key for the correct environment (prod vs staging)?

Common Patterns

Retry with exponential backoff

Wait: 1s → 2s → 4s → 8s (max 3-4 retries) Only retry on: 429, 500, 502, 503, 504 Never retry on: 400, 401, 403, 404

Debug steps for timeout issues

  • Is the endpoint correct? (Try a simple GET first)

  • Is the payload too large?

  • Is the server under load? (Check response time headers)

  • Is there a proxy/firewall in the way?

  • Try with a longer timeout to confirm it's not just slow

CORS issues (browser only)

  • Error: "No Access-Control-Allow-Origin header"

  • Fix: Server must add Access-Control-Allow-Origin header

  • Workaround: Use server-side proxy, not browser fetch

Request Debugging Template

When analyzing a failed request, gather:

Endpoint: [METHOD] [URL] Headers: [Key headers, especially Auth] Body: [Request payload] Status: [Response status code] Response: [Error message or body] Timing: [How long did it take?] Context: [When did it start failing? What changed?]

Source Transparency

This detail page is rendered from real SKILL.md content. Trust labels are metadata-based hints, not a safety guarantee.

Open in GitHubOpen in ClawHub

Related Skills

Related by shared tags or category signals.

General

Maintenance

Maintenance makes home management simple. Record, search, and analyze your data with clear terminal output.

Registry SourceRecently Updated
260xueyetianya
General

ManualExpert

Professional translator for hardware and technical manuals delivering complete, page-by-page bilingual tables and Word exports for accurate DTP preparation.

Registry SourceRecently Updated
60Mugeng-su
General

Semantic Router

让 AI 代理根据对话内容自动选择最合适的模型。四层识别(系统过滤→关键词→指示词→语义相似度),四池架构(高速/智能/人文/代理),五分支路由,全自动 Fallback 回路。支持 trigger_groups_all 非连续词组命中。

Registry SourceRecently Updated
8160halfmoon82
General

Campaign

Campaign - command-line tool for everyday use

Registry SourceRecently Updated
890xueyetianya