Use HTTP Methods According to Their Semantics

Use HTTP Methods According to Their Semantics | BeforeMerge Rules | BeforeMerge

Why this matters

Clients, proxies, and caches rely on method semantics: GET is safe and cacheable, PUT/DELETE are idempotent, POST is not. Violating this causes subtle, hard-to-trace bugs.

Bad

GET /accounts/42/close   # mutates state on a safe method

Good

POST /accounts/42/close  # explicit, non-safe action
PUT  /users/42           # idempotent full update

Why This Matters

Related Rules

Catch this automatically on every PR

Why this matters