v0.2.12 - API contract audit skill
Adds the read-only api-contract-audit skill.\n\nInstall:\n\nnpm install -g coding-agent-skills\n\nSupported CLI commands now include:\n\ncoding-agent-skills validate-pack\ncoding-agent-skills validate-project /path/to/project\ncoding-agent-skills repo-map /path/to/project\ncoding-agent-skills route-trace /path/to/project\ncoding-agent-skills env-audit /path/to/project\ncoding-agent-skills secret-audit /path/to/project\ncoding-agent-skills api-contract-audit /path/to/project\ncoding-agent-skills validate-adapters /path/to/adapter-root\n\nHighlights:\n\n- Static API contract, endpoint, client-call, and schema/type mapping\n- Adapter-aware bounded scanning\n- Partial status when a project adapter does not enable api-contract-audit\n- Evidence-first reporting with explicit not-verified runtime areas\n- Read-only safety model\n- Node.js 20+\n- No runtime dependencies\n\nSafety boundaries:\n\n- No target project builds or tests\n- No app-code execution\n- No URL probing or API calls\n- No schema or client generation\n- No deployments\n- No migrations\n- No secret or .env reads\n- Project adapters narrow context and do not grant additional authority\n\nnpm package:\n\ncoding-agent-skills@0.2.12