Twilio API Skill (Advanced)

Purpose

Provide a production-oriented guide for Twilio API workflows across messaging and communications channels using direct HTTPS requests.

Best fit

• You need SMS/MMS, WhatsApp, Voice, or Verify flows.
• You want reliable webhook handling and operational guardrails.
• You prefer direct HTTP requests rather than SDKs.

Not a fit

• You require a full SDK or complex multi-service orchestration.
• You need advanced campaign management across multiple ESPs.

Quick orientation

• Read references/twilio-api-overview.md for core surfaces and base endpoints.
• Read references/twilio-auth-and-webhooks.md for auth and webhook validation.
• Read references/twilio-messaging-sms-mms.md for SMS/MMS workflows.
• Read references/twilio-whatsapp.md for WhatsApp messaging specifics.
• Read references/twilio-voice.md for call/IVR basics.
• Read references/twilio-conversations.md for omni-channel threads.
• Read references/twilio-verify.md for OTP/verification flows.
• Read references/twilio-sendgrid.md for email sending.
• Read references/twilio-studio.md for low-code flow orchestration.
• Read references/twilio-lookup.md for phone intelligence.
• Read references/twilio-proxy.md for masked communications.
• Read references/twilio-sync.md for real-time state.
• Read references/twilio-taskrouter.md for routing and queues.
• Read references/twilio-segment-engage.md for CDP and audience activation.

Required inputs

• Account SID and Auth Token (or API Key/Secret).
• Sender identity (phone number, messaging service, WhatsApp sender).
• Webhook URLs for callbacks.
• Compliance constraints (opt-in, regional regulations).

Expected output

• A clear workflow plan, method checklist, and operational guardrails.

Operational notes

• Validate webhook signatures on every inbound request.
• Keep outbound rate limits in mind and retry safely.
• Store secrets in a vault and rotate regularly.

Security notes

• Never log credentials.
• Use least-privilege API keys where possible.