Api Contract Tester is a skill that takes OpenAPI/Swagger specs, Postman collections, or raw code as input and generates comprehensive, runnable API test suites. It extracts endpoints, schemas, and constraints from those inputs, then produces tests that go beyond basic status-code checks. Constraint testing covers min/max value boundaries, regex patterns, and enum edge cases. Security-oriented tests are generated automatically, targeting missing authentication tokens, malformed JWTs, and unauthorized cross-user access scenarios. The skill also checks for breaking changes between API versions, flagging field removals and type shifts that would affect consumers.
Output targets include JavaScript and TypeScript frameworks — Jest, Vitest, Supertest, and Playwright — as well as Python test suites using Pytest with requests or httpx, and shell scripts using curl with inline assertions for DevOps pipelines. Each generated suite is accompanied by a Markdown-based coverage report spanning ten categories, including happy paths, authentication, and edge cases.
The skill is suited to teams who want to catch issues such as rate-limit header omissions, pagination boundary failures, SQL injection exposure, and internal stack trace leakage before code reaches production. It is not a live API execution engine; it generates test code for developers to run in their own environments. It does not replace a running test infrastructure or CI pipeline — it produces the code that feeds into one.