Scan a FastAPI project for Pydantic v1 leftovers, async anti-patterns, missing response models, database session issues, and security gaps.
Use this skill when auditing a FastAPI project for quality, performance, or security issues.
Check for Pydantic v1 patterns:
.dict(), .json(), .parse_obj(), .parse_raw(), .__fields__@validator, @root_validatorclass Config: with orm_modeconint, constr, confloat constrained typesfrom pydantic import BaseSettings (moved to pydantic-settings)Check for async anti-patterns:
requests.* in async def endpointstime.sleep() in endpointsasync defopen() file I/O in async def endpointsawait on async callsrun_in_executorCheck for missing response models:
response_model parameterCheck for database issues:
expire_on_commit=False on async sessionspool_pre_ping=True on engineCheck for security issues:
allow_origins=["*"] in productionException caught and details exposed to clientCheck for deprecated patterns:
@app.on_event("startup"/"shutdown") (use lifespan)Depends() instead of AnnotatedProduce a summary report with issue count, severity, file locations, and fixes.