Api Rate Limiting
Provides API guidance and assistance for agent workflows.
Install on your platform
We auto-selected Claude Code based on this skill’s supported platforms.
Run in terminal (recommended)
claude mcp add api-rate-limiting npx -- -y @trustedskills/api-rate-limiting
Or manually add to ~/.claude/settings.json
{
"mcpServers": {
"api-rate-limiting": {
"command": "npx",
"args": [
"-y",
"@trustedskills/api-rate-limiting"
]
}
}
}Requires Claude Code (claude CLI). Run claude --version to verify your install.
About This Skill
What it does
This skill provides guidance and assistance for implementing API rate limiting strategies within agent workflows. It enables protection of APIs from abuse, management of traffic spikes, and enforcement of usage limits using various algorithms like Token Bucket and Sliding Window. The skill includes reference implementations and best practices for different scenarios, including distributed systems utilizing Redis.
When to use it
- Protecting APIs from brute force attacks
- Managing traffic spikes
- Implementing tiered service plans
- Preventing DoS attacks
Key capabilities
- Implementation of Token Bucket rate limiting algorithm.
- Implementation of Sliding Window rate limiting algorithm.
- Guidance on Redis-based rate limiting for distributed environments.
- Strategies for tiered rate limiting based on user plans.
- Recommendations for including rate limit headers in API responses.
Example prompts
- "Implement a Token Bucket rate limiter with a capacity of 10 tokens and a refill rate of 2 tokens per second."
- "How can I use Redis to implement distributed rate limiting?"
- "What are the best practices for setting appropriate window sizes for a Sliding Window algorithm?"
Tips & gotchas
- For production environments, avoid using in-memory storage. Utilize a distributed solution like Redis.
- Always include rate limit headers in API responses and consider providing a
Retry-Afterheader when limits are exceeded. - Be mindful of distributed scenarios and avoid simple counters for managing rate limits across multiple systems.
Tags
TrustedSkills Verification
Unlike other registries that point to live repositories, TrustedSkills pins every skill to a verified commit hash. This protects you from malicious updates — what you install today is exactly what was reviewed and verified.
Security Audits
| Gen Agent Trust Hub | Pass |
| Socket | Pass |
| Snyk | Pass |
🌐 Community
Passed automated security scans.