Zod Validation Utilities

Name: Zod Validation Utilities
Author: giuseppe-trisciuoglio

giuseppe-trisciuoglio/developer-kit

Apply Zod v4 patterns for discriminated unions, recursive trees, and collection validation instead of ad-hoc TypeScript guards.

Overview

zod-validation-utilities is an agent skill for the Build phase that teaches advanced Zod v4 validation patterns for unions, recursion, and collection types.

Install

npx skills add https://github.com/giuseppe-trisciuoglio/developer-kit --skill zod-validation-utilities

What is this skill?

Discriminated union EventSchema with typed switch handlers per event type
Recursive TreeNodeSchema using z.lazy for strict tree children
Map and Set validation patterns alongside z.record for string maps
Zod v4 APIs including z.email, z.coerce.date, and z.enum plan tiers
Examples tie inferred types to handleEvent-style domain logic

Compatible agents: Claude Code, Cursor, Codex, Windsurf

Adoption & trust: 943 installs on skills.sh; 271 GitHub stars; 3/3 security scanners passed (skills.sh audits).

What problem does it solve?

Your API and event types are getting complex but your Zod schemas are still flat objects, so runtime validation and TypeScript narrowing fall out of sync.

Who is it for?

Indie backend devs standardizing event buses, webhooks, and nested config with Zod v4 on TypeScript APIs.

Skip if: Greenfield projects that only need three-field forms with no unions, recursion, or custom collection validation.

When should I use this skill?

Use when designing or refactoring Zod v4 schemas for complex unions, trees, maps, or sets on backend boundaries.

What do I get? / Deliverables

You get copy-ready Zod v4 schemas for discriminated unions, recursive trees, and map/set validation that infer clean TypeScript types for handlers.

Zod schema modules with z.infer types
Handler-friendly discriminated union parsers

Recommended Skills

Entra App Registrationmicrosoft/azure-skills

Walkthrough for Microsoft Entra ID app registration, OAuth configuration, and MSAL-based authentication setup.374k installs·1.2k stars

Azure Aigatewaymicrosoft/azure-skills

Quick reference for building and operating Azure API Management as an AI gateway using ARM .NET SDK and policy best prac…373k installs·1.2k stars

Lark Openapi Explorerlarksuite/cli

Escalation path for uncovered Lark/Feishu APIs: browse official OpenAPI docs and execute via lark-cli.208k installs·13.7k stars

Supabasesupabase/agent-skills

Authoritative Supabase agent skill for database, auth, edge functions, and client SSR with emphasis on up-to-date docs, …111k installs·2.2k stars

Firebase Auth Basicsfirebase/agent-skills

firebase-auth-basics is a guided agent skill for solo builders implementing Firebase Authentication in web or mobile-bac…75.7k installs·345 stars

Firebase Data Connectfirebase/agent-skills

Firebase Data Connect is an agent skill that equips solo builders to design relational data layers on Firebase using Gra…73.2k installs·345 stars

Journey fit

Primary fit

BuildBackend, data & payments

Runtime and API boundary validation belongs in backend implementation when shapes get non-trivial. The skill is a pattern library for Zod schemas used at handlers, events, and config parsing—not UI styling.

Also useful

ShipTesting & QA

How it compares

Pattern reference for Zod v4 schema design—not a full OpenAPI generator or database migration toolkit.

Common Questions / FAQ

Who is zod-validation-utilities for?

Solo builders and small teams writing TypeScript backends who want agent help drafting rigorous Zod v4 schemas for non-trivial data shapes.

When should I use zod-validation-utilities?

During Build backend work when defining event unions, tree structures, or validated records before shipping API routes or workers.

Is zod-validation-utilities safe to install?

It is documentation-style guidance without inherent runtime privileges; still review the Security Audits panel on this Prism page before adding any skill to your agent.

SKILL.md

READMESKILL.md - Zod Validation Utilities

# Advanced Zod v4 Patterns

Advanced validation patterns using Zod v4 for complex use cases.

## Discriminated Union with Metadata

```ts
import { z } from "zod";

const EventSchema = z.discriminatedUnion("type", [
  z.object({
    type: z.literal("user_created"),
    userId: z.string().uuid(),
    email: z.email(),
    createdAt: z.coerce.date(),
  }),
  z.object({
    type: z.literal("user_deleted"),
    userId: z.string().uuid(),
    reason: z.string().optional(),
  }),
  z.object({
    type: z.literal("subscription_upgraded"),
    userId: z.string().uuid(),
    previousPlan: z.enum(["free", "pro", "enterprise"]),
    newPlan: z.enum(["pro", "enterprise"]),
    effectiveAt: z.coerce.date(),
  }),
]);

type Event = z.infer<typeof EventSchema>;

function handleEvent(event: Event) {
  switch (event.type) {
    case "user_created":
      return sendWelcomeEmail(event.email);
    case "user_deleted":
      return cleanupUserData(event.userId);
    case "subscription_upgraded":
      return applyPlanFeatures(event.userId, event.newPlan);
  }
}
```

## Recursive Schema (Tree Structure)

```ts
import { z } from "zod";

export const TreeNodeSchema: z.ZodType<{ id: string; children: TreeNode[] }> = z
  .object({
    id: z.string(),
    children: z.lazy(() => z.array(TreeNodeSchema)).default([]),
  })
  .strict();

type TreeNode = z.infer<typeof TreeNodeSchema>;
```

## Map and Set Validation

```ts
import { z } from "zod";

export const StringRecordSchema = z.record(z.string());
export const UserMapSchema = z.map(z.string(), z.object({
  id: z.string(),
  name: z.string(),
}));

export const UniqueTagsSchema = z.set(z.string().min(1).max(20)).max(10);
```

## Conditional Schema (or and union)

```ts
import { z } from "zod";

export const PricingSchema = z.union([
  z.object({ type: z.literal("fixed"), amount: z.number().positive() }),
  z.object({ type: z.literal("tiered"), tiers: z.array(z.object({
    minQty: z.number().int().nonnegative(),
    pricePerUnit: z.number().positive(),
  })) }),
]);

export const AdvancedSearchSchema = z.object({
  query: z.string().optional(),
  filters: z.object({
    status: z.enum(["active", "archived", "all"]).default("all"),
    dateRange: z.object({
      from: z.coerce.date(),
      to: z.coerce.date(),
    }).optional(),
  }).optional(),
});
```

## Async Validation (for database checks)

```ts
import { z } from "zod";

export const UniqueUsernameSchema = z.string()
  .min(3)
  .max(20)
  .regex(/^[a-zA-Z0-9_]+$/)
  .refine(async (username) => {
    const exists = await db.user.findUnique({ where: { username } });
    return !exists;
  }, { error: "Username already taken" });
```

## Pipeline Schema (Zod v4 functional pipe)

```ts
import { z } from "zod";

export const UsernamePipelineSchema = z
  .string()
  .trim()
  .toLowerCase()
  .min(3)
  .max(20)
  .regex(/^[a-z0-9_]+$/);

export const SlugSchema = z
  .string()
  .transform((v) => v.toLowerCase().replace(/\s+/g, "-"))
  .pipe(z.string().regex(/^[a-z0-9-]+$/));
```


---
name: zod-validation-utilities
description: Creates reusable Zod v4 schemas, validates API payloads, forms, and configuration input, transforms and coerces data safely, and handles validation errors with strong type inference for TypeScript applications. Use when designing validation layers, parsing `z.string()`, `z.object()`, or `z.email()` schemas, or implementing runtime type-safe data validation.
allowed-tools: Read, Write, Edit, Bash, Grep, Glob
---

# Zod Validation Utilities

## Overview

Production-ready Zod v4 patterns for reusable, type-safe validation with minimal boilerplate. Focuses on modern APIs, predictable error handling, and form integration.

## When to Use

- Defining request/response validation schemas in TypeScript services
- Parsing untrusted input from APIs, forms, env vars, or external systems
- Standardizing coercion, transforms, and cross-field validation
- Building reusable schema utilities across teams
- Integrating React Hook Form with Zod

What is this skill?

Discriminated union EventSchema with typed switch handlers per event type

Recursive TreeNodeSchema using z.lazy for strict tree children

Map and Set validation patterns alongside z.record for string maps

Zod v4 APIs including z.email, z.coerce.date, and z.enum plan tiers

Examples tie inferred types to handleEvent-style domain logic

Compatible agents: Claude Code, Cursor, Codex, Windsurf

Adoption & trust: 943 installs on skills.sh; 271 GitHub stars; 3/3 security scanners passed (skills.sh audits).

Journey fit

Primary fit

BuildBackend, data & payments

Also useful

ShipTesting & QA

SKILL.md

READMESKILL.md - Zod Validation Utilities

# Advanced Zod v4 Patterns

Advanced validation patterns using Zod v4 for complex use cases.

## Discriminated Union with Metadata

```ts
import { z } from "zod";

const EventSchema = z.discriminatedUnion("type", [
  z.object({
    type: z.literal("user_created"),
    userId: z.string().uuid(),
    email: z.email(),
    createdAt: z.coerce.date(),
  }),
  z.object({
    type: z.literal("user_deleted"),
    userId: z.string().uuid(),
    reason: z.string().optional(),
  }),
  z.object({
    type: z.literal("subscription_upgraded"),
    userId: z.string().uuid(),
    previousPlan: z.enum(["free", "pro", "enterprise"]),
    newPlan: z.enum(["pro", "enterprise"]),
    effectiveAt: z.coerce.date(),
  }),
]);

type Event = z.infer<typeof EventSchema>;

function handleEvent(event: Event) {
  switch (event.type) {
    case "user_created":
      return sendWelcomeEmail(event.email);
    case "user_deleted":
      return cleanupUserData(event.userId);
    case "subscription_upgraded":
      return applyPlanFeatures(event.userId, event.newPlan);
  }
}
```

## Recursive Schema (Tree Structure)

```ts
import { z } from "zod";

export const TreeNodeSchema: z.ZodType<{ id: string; children: TreeNode[] }> = z
  .object({
    id: z.string(),
    children: z.lazy(() => z.array(TreeNodeSchema)).default([]),
  })
  .strict();

type TreeNode = z.infer<typeof TreeNodeSchema>;
```

## Map and Set Validation

```ts
import { z } from "zod";

export const StringRecordSchema = z.record(z.string());
export const UserMapSchema = z.map(z.string(), z.object({
  id: z.string(),
  name: z.string(),
}));

export const UniqueTagsSchema = z.set(z.string().min(1).max(20)).max(10);
```

## Conditional Schema (or and union)

```ts
import { z } from "zod";

export const PricingSchema = z.union([
  z.object({ type: z.literal("fixed"), amount: z.number().positive() }),
  z.object({ type: z.literal("tiered"), tiers: z.array(z.object({
    minQty: z.number().int().nonnegative(),
    pricePerUnit: z.number().positive(),
  })) }),
]);

export const AdvancedSearchSchema = z.object({
  query: z.string().optional(),
  filters: z.object({
    status: z.enum(["active", "archived", "all"]).default("all"),
    dateRange: z.object({
      from: z.coerce.date(),
      to: z.coerce.date(),
    }).optional(),
  }).optional(),
});
```

## Async Validation (for database checks)

```ts
import { z } from "zod";

export const UniqueUsernameSchema = z.string()
  .min(3)
  .max(20)
  .regex(/^[a-zA-Z0-9_]+$/)
  .refine(async (username) => {
    const exists = await db.user.findUnique({ where: { username } });
    return !exists;
  }, { error: "Username already taken" });
```

## Pipeline Schema (Zod v4 functional pipe)

```ts
import { z } from "zod";

export const UsernamePipelineSchema = z
  .string()
  .trim()
  .toLowerCase()
  .min(3)
  .max(20)
  .regex(/^[a-z0-9_]+$/);

export const SlugSchema = z
  .string()
  .transform((v) => v.toLowerCase().replace(/\s+/g, "-"))
  .pipe(z.string().regex(/^[a-z0-9-]+$/));
```


---
name: zod-validation-utilities
description: Creates reusable Zod v4 schemas, validates API payloads, forms, and configuration input, transforms and coerces data safely, and handles validation errors with strong type inference for TypeScript applications. Use when designing validation layers, parsing `z.string()`, `z.object()`, or `z.email()` schemas, or implementing runtime type-safe data validation.
allowed-tools: Read, Write, Edit, Bash, Grep, Glob
---

# Zod Validation Utilities

## Overview

Production-ready Zod v4 patterns for reusable, type-safe validation with minimal boilerplate. Focuses on modern APIs, predictable error handling, and form integration.

## When to Use

- Defining request/response validation schemas in TypeScript services
- Parsing untrusted input from APIs, forms, env vars, or external systems
- Standardizing coercion, transforms, and cross-field validation
- Building reusable schema utilities across teams
- Integrating React Hook Form with Zod

Overview

Install

What is this skill?

What problem does it solve?

Who is it for?

When should I use this skill?

What do I get? / Deliverables

Recommended Skills

Journey fit

Who is zod-validation-utilities for?

When should I use zod-validation-utilities?

Is zod-validation-utilities safe to install?

SKILL.md

This week for builders

Overview

Install

What is this skill?

What problem does it solve?

Who is it for?

When should I use this skill?

What do I get? / Deliverables

Recommended Skills

Journey fit

Who is zod-validation-utilities for?

When should I use zod-validation-utilities?

Is zod-validation-utilities safe to install?

SKILL.md