rules: # INFO / METADATA info-title-required: description: OpenAPI info must have a title. severity: error given: $.info then: field: title function: truthy info-title-prefix: description: API title should start with "USDA NASS". severity: warn given: $.info.title then: function: pattern functionOptions: match: "^USDA NASS" info-description-required: description: OpenAPI info must have a description. severity: warn given: $.info then: field: description function: truthy info-version-required: description: OpenAPI info must have a version. severity: error given: $.info then: field: version function: truthy # OPENAPI VERSION openapi-version-3: description: Must use OpenAPI 3.0.x specification. severity: error given: $ then: field: openapi function: pattern functionOptions: match: "^3\\.0\\." # SERVERS servers-defined: description: At least one server must be defined. severity: error given: $ then: field: servers function: truthy servers-https-required: description: Server URLs must use HTTPS. severity: error given: $.servers[*].url then: function: pattern functionOptions: match: "^https://" # OPERATIONS operation-summary-required: description: Every operation must have a summary. severity: error given: $.paths[*][get,post,put,patch,delete] then: field: summary function: truthy operation-summary-prefix: description: Operation summaries should start with "USDA NASS". severity: warn given: $.paths[*][get,post,put,patch,delete].summary then: function: pattern functionOptions: match: "^USDA NASS" operation-description-required: description: Every operation must have a description. severity: warn given: $.paths[*][get,post,put,patch,delete] then: field: description function: truthy operation-id-required: description: Every operation must have an operationId. severity: error given: $.paths[*][get,post,put,patch,delete] then: field: operationId function: truthy operation-tags-required: description: Every operation must have at least one tag. severity: warn given: $.paths[*][get,post,put,patch,delete] then: field: tags function: truthy # PARAMETERS parameter-description-required: description: Every parameter must have a description. severity: warn given: $.paths[*][get,post,put,patch,delete].parameters[*] then: field: description function: truthy parameter-schema-required: description: Every parameter must have a schema. severity: error given: $.paths[*][get,post,put,patch,delete].parameters[*] then: field: schema function: truthy # RESPONSES response-success-required: description: Every operation must define at least one 2xx response. severity: error given: $.paths[*][get,post,put,patch,delete].responses then: function: truthy response-401-defined: description: Protected operations should define a 401 response. severity: warn given: $.paths[*][get,post,put,patch,delete].responses then: field: "401" function: truthy response-description-required: description: Every response must have a description. severity: warn given: $.paths[*][get,post,put,patch,delete].responses[*] then: field: description function: truthy # SCHEMAS schema-description-required: description: Top-level component schemas should have a description. severity: warn given: $.components.schemas[*] then: field: description function: truthy # SECURITY security-schemes-defined: description: Security schemes must be defined in components. severity: error given: $.components then: field: securitySchemes function: truthy # HTTP METHOD CONVENTIONS get-no-request-body: description: GET operations must not have a request body. severity: error given: $.paths[*].get then: field: requestBody function: falsy # QUALITY no-empty-descriptions: description: Descriptions must not be empty strings. severity: warn given: $..description then: function: truthy