Comments (5)
philsturgeon
commented on July 29, 2024
2
Hey hey! I made Speccy and it got trapped and promptly abandoned at WeWork when I left. Spectral is the successor, it does severything Speccy did and a million times more. https://github.com/stoplightio/spectral/
from php-openapi.
cebe
commented on July 29, 2024
it is used in the CI pipeline to compare whether specs that are valid in speccy are valid here too, so I'm not very concerned about any XSS in it.
However I'm open to replace it with a more up to date tooling from the JS world.
from php-openapi.
vvanpo
commented on July 29, 2024
@cebe even though the JavaScript dependency is not included in the release tarball, the presence of the yarn.lock file causes security scanning tools like Snyk to report a critical vulnerability (since it can be configured to crawl the a project after installing all Composer dependencies, looking for dependency manifests like yarn.lock). Would it be possible to package and release php-openapi without the yarn.lock file present?
from php-openapi.
cebe
commented on July 29, 2024
As far as I remember that is possible by adding a .gitattributes file to exclude files like that, e.g. https://github.com/cebe/markdown/blob/2b2461bed9e15305486319ee552bafca75d1cdaa/.gitattributes
Happy to merge a PR that adds one.
from php-openapi.
cebe
commented on July 29, 2024
However I'm open to replace it with a more up to date tooling from the JS world.
https://openapi.tools/#description-validators
from php-openapi.
Related Issues (20)
- Infinite loop error HOT 1
- Symfony 6 support HOT 2
- Missing functions to remove elements ? HOT 1
- Referenced Parameters compiling to Object instead of Array HOT 4
- Major Performance issue even with new caching? HOT 6
- Add a way to create schemas HOT 1
- Add (or document how to) read schema properties HOT 4
- Reference parsing doesn't work in the CLI tool using relative paths. HOT 3
- Wrong error message when using an undefined property for a schema object property definition HOT 1
- Convert the code-base to use Symfony Console HOT 1
- Make `symfony/yaml` dependency optional
- References to incorrect components should be considered invalid HOT 1
- Unable to reference other local json file HOT 2
- Duplicate OperationIds should be considered invalid
- Support for PHP 8.1 and 8.2 HOT 1
- Further library maintenance HOT 9
- Discriminator mapping throws validation error on valid discriminator mapping and accepts incorrect one. HOT 1
- Add support for symfony/yaml version ^7 HOT 3
- Nexmo/api-specification no longer exists HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from php-openapi.