From vanguard-frontier-agentic
Determines whether aggregation/shaping logic belongs in a BFF layer or client-side composition, and audits BFF boundaries for scope creep, duplicated logic, and trust-boundary erosion.
How this skill is triggered — by the user, by Claude, or both
Slash command
/vanguard-frontier-agentic:frontend-bff-boundary-reviewThis skill is limited to the following tools:
The summary Claude sees in its skill listing — used to decide when to auto-load this skill
Decide whether a multi-backend data need belongs in a Backend-for-Frontend (BFF) route or in client-side composition, and audit an existing BFF layer for the two failure modes that matter most: organic scope creep (duplicated or one-off aggregation logic scattered across routes) and trust-boundary erosion (a BFF that forwards client-supplied authorization claims or credentials without re-verify...
Decide whether a multi-backend data need belongs in a Backend-for-Frontend (BFF) route or in client-side composition, and audit an existing BFF layer for the two failure modes that matter most: organic scope creep (duplicated or one-off aggregation logic scattered across routes) and trust-boundary erosion (a BFF that forwards client-supplied authorization claims or credentials without re-verifying them, or that leaks internal backend topology into its responses). This skill exists so the boundary decision and the trust-boundary audit stay the focus, and so field-level contract review of an already-scoped endpoint, or client-side cache/store design once data has landed in the browser, stay out of scope.
Use this skill when the user asks to:
Do not use this skill for:
api-integration-contract-review,state-management-decision-review,fetch() cache-directive selection for a Next.js route with no cross-service aggregation involved — that is nextjs-rendering-caching-review,'use client'/'use server' boundary review with no BFF-scope question involved — that is nextjs-app-router-data-fetching-review./vercel/next.js with resolve-library-id before citing any Route Handler capability, caching directive, or runtime behavior as grounds for a BFF-vs-client-composition recommendation.package.json to confirm the installed Next.js major version, then call query-docs scoped to that version for "Route Handler caching" and "route segment config revalidate fetchCache." Caching semantics changed materially across major versions — Route Handler GET methods are cached by default through Next.js 14 but are not cached by default starting in Next.js 15, requiring an explicit export const dynamic = 'force-static' to opt back in. A BFF route assumed to cache aggregated responses on an unverified version can silently hit every backend on every request instead of reducing round-trips as intended.documentation-based, version-unconfirmed and recommend the user verify export const dynamic / export const revalidate / export const fetchCache behavior against their installed version before relying on it for load-reduction claims.fetch() call inside a Server Component; segment-level config (dynamic, revalidate, fetchCache) governs the Route Handler's own caching, and it is set independently of caching used for calls the handler itself makes.Load these only when needed:
Return, at minimum:
npx claudepluginhub raishin/vanguard-frontier-agentic --plugin vanguard-frontier-agenticReviews frontend-to-backend API contracts for data-minimization, authorization enforcement, error-shape safety, CORS, and versioning before shipping.
Reviews and generates micro-frontend code against eight boundary rules, covering Module Federation, Native Federation, Single SPA, and governance for feature flags, edge strategy, and SSR ownership.
Routes, aggregates, and secures client requests through an API gateway or BFF pattern using Express with auth, rate limiting, and service proxies.