From b5084834c58cae21f12310ffb18aa523e8aa3438 Mon Sep 17 00:00:00 2001 From: Rafal Artych <121048129+rartych@users.noreply.github.com> Date: Wed, 4 Feb 2026 19:40:08 +0100 Subject: [PATCH 01/20] Refactor Spectral workflow to add OWASP linting Refactored workflow to include OWASP linting and Node.js setup. --- .github/workflows/spectral-oas.yml | 15 ++++++++++++--- 1 file changed, 12 insertions(+), 3 deletions(-) diff --git a/.github/workflows/spectral-oas.yml b/.github/workflows/spectral-oas.yml index 6ae424a..36c1384 100644 --- a/.github/workflows/spectral-oas.yml +++ b/.github/workflows/spectral-oas.yml @@ -2,6 +2,7 @@ name: Execute Spectral with CAMARA ruleset # A reusable action for validating PRs using tools configuration from branch indicated by input `configurations` variable # CAMARA Project - Github Action # initial version +# 04.02.2026 refactored steps and added OWASP linting on: workflow_call: @@ -32,10 +33,18 @@ jobs: sparse-checkout-cone-mode: false - name: Copy specified folder to workspace root run: cp -RT ${{ github.workspace }}/lint-config/linting/config ${{ github.workspace }} - - name: Install Spectral - run: npm install -g @stoplight/spectral + - name: Set up Node.js + uses: actions/setup-node@v6 + with: + node-version: '24' + - name: Install Spectral CLI + run: npm install -g @stoplight/spectral-cli - name: Install Spectral functions run: npm install -g @stoplight/spectral-functions + - name: Install Spectral OWASP + run: npm install --save-dev @stoplight/spectral-owasp-ruleset@^2.0 - name: Run Spectral linting run: spectral lint code/API_definitions/*.yaml --verbose --ruleset ${{ github.workspace }}/.spectral.yaml - + - name: Run Spectral linting for OWASP + run: spectral lint code/API_definitions/*.yaml --verbose --ruleset ${{ github.workspace }}/.spectral-owasp.yaml + continue-on-error: true From 0edea985307517db1fb959374bfccea11290b6a0 Mon Sep 17 00:00:00 2001 From: Rafal Artych <121048129+rartych@users.noreply.github.com> Date: Wed, 4 Feb 2026 19:42:09 +0100 Subject: [PATCH 02/20] Add OWASP API Security Top 10 2023 linting ruleset This file contains linting rules for the OWASP API Security Top 10 2023, including excluded rules and modified severity levels. --- linting/config/.spectral-owasp.yaml | 26 ++++++++++++++++++++++++++ 1 file changed, 26 insertions(+) create mode 100644 linting/config/.spectral-owasp.yaml diff --git a/linting/config/.spectral-owasp.yaml b/linting/config/.spectral-owasp.yaml new file mode 100644 index 0000000..24f1c8c --- /dev/null +++ b/linting/config/.spectral-owasp.yaml @@ -0,0 +1,26 @@ +# CAMARA Project - linting ruleset for OWASP API Security Top 10 2023 - documentation avaialable here: +# https://github.com/camaraproject/Commonalities/blob/main/documentation/Linting-rules.md +# https://apistylebook.stoplight.io/docs/owasp-top-10-2023 +# Changelog: +# - 05.02.2026: Initial version +extends: ["@stoplight/spectral-owasp-ruleset"] +rules: +# excluded rules: + owasp:api2:2023-auth-insecure-schemes : off + owasp:api2:2023-jwt-best-practices : off + owasp:api2:2023-no-http-basic : off + owasp:api4:2023-integer-limit : off + owasp:api4:2023-rate-limit : off + owasp:api4:2023-rate-limit-retry-after : off + owasp:api4:2023-rate-limit-responses-429 : off + owasp:api8:2023-define-cors-origin : off + owasp:api8:2023-define-error-responses-500 : off + owasp:api9:2023-inventory-access : off + owasp:api9:2023-inventory-environment : off + +# modified severity level: + owasp:api8:2023-define-error-responses-401 : error + owasp:api4:2023-string-limit : warn + owasp:api4:2023-integer-format: warn + owasp:api4:2023-integer-limit-legacy: warn + owasp:api4:2023-array-limit : warn From 21632998fa3200f99a060f93b46313e089a01ee0 Mon Sep 17 00:00:00 2001 From: Rafal Artych <121048129+rartych@users.noreply.github.com> Date: Wed, 4 Feb 2026 19:59:14 +0100 Subject: [PATCH 03/20] Update repository reference in workflow config --- .github/workflows/spectral-oas.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/spectral-oas.yml b/.github/workflows/spectral-oas.yml index 36c1384..cdcf069 100644 --- a/.github/workflows/spectral-oas.yml +++ b/.github/workflows/spectral-oas.yml @@ -25,7 +25,7 @@ jobs: - name: Checkout linting config uses: actions/checkout@v6 with: - repository: camaraproject/tooling + repository: ${{ github.repository_owner }}/tooling path: lint-config ref: ${{ inputs.configurations }} sparse-checkout: | From e4ee76c05caa0f0c10a33874728e90229228f211 Mon Sep 17 00:00:00 2001 From: Rafal Artych <121048129+rartych@users.noreply.github.com> Date: Wed, 4 Feb 2026 20:45:22 +0100 Subject: [PATCH 04/20] Enhance Spectral linting with logging and artifact upload Redirect spectral linting output to log files and upload them as artifacts. --- .github/workflows/spectral-oas.yml | 16 +++++++++++++--- 1 file changed, 13 insertions(+), 3 deletions(-) diff --git a/.github/workflows/spectral-oas.yml b/.github/workflows/spectral-oas.yml index cdcf069..55f98bf 100644 --- a/.github/workflows/spectral-oas.yml +++ b/.github/workflows/spectral-oas.yml @@ -44,7 +44,17 @@ jobs: - name: Install Spectral OWASP run: npm install --save-dev @stoplight/spectral-owasp-ruleset@^2.0 - name: Run Spectral linting - run: spectral lint code/API_definitions/*.yaml --verbose --ruleset ${{ github.workspace }}/.spectral.yaml + run: | + spectral lint code/API_definitions/*.yaml --verbose --ruleset ${{ github.workspace }}/.spectral.yaml > spectral_oas.log 2>&1 + cat spectral_oas.log - name: Run Spectral linting for OWASP - run: spectral lint code/API_definitions/*.yaml --verbose --ruleset ${{ github.workspace }}/.spectral-owasp.yaml - continue-on-error: true + run: | + spectral lint code/API_definitions/*.yaml --verbose --ruleset ${{ github.workspace }}/.spectral-owasp.yaml> spectral_owasp.log 2>&1 + cat spectral_owasp.log + continue-on-error: true + - name: Upload logs + if: always() + uses: actions/upload-artifact@v6 + with: + name: spectral-logs + path: *.log From 96a626f4bfded18c8c4edd8076fada0e99da77b0 Mon Sep 17 00:00:00 2001 From: Rafal Artych <121048129+rartych@users.noreply.github.com> Date: Wed, 4 Feb 2026 20:54:40 +0100 Subject: [PATCH 05/20] Fix path syntax for log file upload --- .github/workflows/spectral-oas.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/spectral-oas.yml b/.github/workflows/spectral-oas.yml index 55f98bf..22ac9db 100644 --- a/.github/workflows/spectral-oas.yml +++ b/.github/workflows/spectral-oas.yml @@ -57,4 +57,4 @@ jobs: uses: actions/upload-artifact@v6 with: name: spectral-logs - path: *.log + path: '*.log' From 308085952d9786699d4eaa1059690f144c11ce77 Mon Sep 17 00:00:00 2001 From: Rafal Artych <121048129+rartych@users.noreply.github.com> Date: Mon, 9 Feb 2026 18:19:28 +0100 Subject: [PATCH 06/20] Add spectral-camara.yaml configuration file --- linting/config/.spectral-camara.yaml | 3 +++ 1 file changed, 3 insertions(+) create mode 100644 linting/config/.spectral-camara.yaml diff --git a/linting/config/.spectral-camara.yaml b/linting/config/.spectral-camara.yaml new file mode 100644 index 0000000..b204cfa --- /dev/null +++ b/linting/config/.spectral-camara.yaml @@ -0,0 +1,3 @@ +extends: + - ./.spectral.yaml + - ./.spectral-owasp.yaml From 6a4e7603f8f36f20f332face65ffd3c2085e82ac Mon Sep 17 00:00:00 2001 From: Rafal Artych <121048129+rartych@users.noreply.github.com> Date: Mon, 9 Feb 2026 18:20:48 +0100 Subject: [PATCH 07/20] Add OWASP API Security Top 10 2023 linting ruleset Initial version of the OWASP API Security Top 10 2023 linting ruleset. --- linting/config/.spectral-owasp-target.yaml | 28 ++++++++++++++++++++++ 1 file changed, 28 insertions(+) create mode 100644 linting/config/.spectral-owasp-target.yaml diff --git a/linting/config/.spectral-owasp-target.yaml b/linting/config/.spectral-owasp-target.yaml new file mode 100644 index 0000000..641d2ab --- /dev/null +++ b/linting/config/.spectral-owasp-target.yaml @@ -0,0 +1,28 @@ +# CAMARA Project - linting ruleset for OWASP API Security Top 10 2023 - documentation avaialable here: +# https://github.com/camaraproject/Commonalities/blob/main/documentation/Linting-rules.md +# https://apistylebook.stoplight.io/docs/owasp-top-10-2023 +# Changelog: +# - 05.02.2026: Initial version +# - 09.02.2026: Target version (owasp:api4 original severity restored) + +extends: ["@stoplight/spectral-owasp-ruleset"] +rules: +# excluded rules: + owasp:api2:2023-auth-insecure-schemes : off + owasp:api2:2023-jwt-best-practices : off + owasp:api2:2023-no-http-basic : off + owasp:api4:2023-integer-limit : off + owasp:api4:2023-rate-limit : off + owasp:api4:2023-rate-limit-retry-after : off + owasp:api4:2023-rate-limit-responses-429 : off + owasp:api8:2023-define-cors-origin : off + owasp:api8:2023-define-error-responses-500 : off + owasp:api9:2023-inventory-access : off + owasp:api9:2023-inventory-environment : off + +# modified severity level: + owasp:api8:2023-define-error-responses-401 : error +# owasp:api4:2023-string-limit : warn +# owasp:api4:2023-integer-format: warn +# owasp:api4:2023-integer-limit-legacy: warn +# owasp:api4:2023-array-limit : warn From dfe31e7b76af149330ad1357b6e8e8d4ff2dac1f Mon Sep 17 00:00:00 2001 From: Rafal Artych <121048129+rartych@users.noreply.github.com> Date: Mon, 23 Feb 2026 12:26:26 +0100 Subject: [PATCH 08/20] Update spectral OWASP ruleset source URL --- linting/config/.spectral-owasp-target.yaml | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/linting/config/.spectral-owasp-target.yaml b/linting/config/.spectral-owasp-target.yaml index 641d2ab..d960e06 100644 --- a/linting/config/.spectral-owasp-target.yaml +++ b/linting/config/.spectral-owasp-target.yaml @@ -5,7 +5,8 @@ # - 05.02.2026: Initial version # - 09.02.2026: Target version (owasp:api4 original severity restored) -extends: ["@stoplight/spectral-owasp-ruleset"] +# extends: ["@stoplight/spectral-owasp-ruleset"] +extends: ["https://unpkg.com/@stoplight/spectral-owasp-ruleset/dist/ruleset.mjs"] rules: # excluded rules: owasp:api2:2023-auth-insecure-schemes : off From a0683d2d28d15dfad4064d9ee90f74dbcd1b0589 Mon Sep 17 00:00:00 2001 From: Rafal Artych <121048129+rartych@users.noreply.github.com> Date: Mon, 23 Feb 2026 12:27:01 +0100 Subject: [PATCH 09/20] Update OWASP ruleset URL in spectral config --- linting/config/.spectral-owasp.yaml | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/linting/config/.spectral-owasp.yaml b/linting/config/.spectral-owasp.yaml index 24f1c8c..7a64324 100644 --- a/linting/config/.spectral-owasp.yaml +++ b/linting/config/.spectral-owasp.yaml @@ -3,7 +3,9 @@ # https://apistylebook.stoplight.io/docs/owasp-top-10-2023 # Changelog: # - 05.02.2026: Initial version -extends: ["@stoplight/spectral-owasp-ruleset"] + +# extends: ["@stoplight/spectral-owasp-ruleset"] +extends: ["https://unpkg.com/@stoplight/spectral-owasp-ruleset/dist/ruleset.mjs"] rules: # excluded rules: owasp:api2:2023-auth-insecure-schemes : off From 82583ab5e5bebf3b3ea8415f27abe6b55496060a Mon Sep 17 00:00:00 2001 From: Rafal Artych <121048129+rartych@users.noreply.github.com> Date: Mon, 23 Feb 2026 13:13:33 +0100 Subject: [PATCH 10/20] Update pr_validation.yml --- .github/workflows/pr_validation.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/pr_validation.yml b/.github/workflows/pr_validation.yml index 456bf1f..ceb6ea7 100644 --- a/.github/workflows/pr_validation.yml +++ b/.github/workflows/pr_validation.yml @@ -201,7 +201,7 @@ jobs: DISABLE: COPYPASTE,SPELL,JAVASCRIPT,MARKDOWN # OPENAPI_SPECTRAL is deprecated but still present in Megalinter v7 DISABLE_LINTERS: OPENAPI_SPECTRAL,YAML_PRETTIER,REPOSITORY_GRYPE,REPOSITORY_SEMGREP,REPOSITORY_DEVSKIM,REPOSITORY_KICS,REPOSITORY_TRIVY,REPOSITORY_TRIVY_SBOM,REPOSITORY_TRUFFLEHOG,REPOSITORY_CHECKOV,REPOSITORY_GITLEAKS,YAML_V8R,JAVA_PMD - API_SPECTRAL_CONFIG_FILE: .spectral.yaml + API_SPECTRAL_CONFIG_FILE: .spectral-camara.yaml YAML_YAMLLINT_CONFIG_FILE: .yamllint.yaml GHERKIN_GHERKIN_LINT_CONFIG_FILE: .gherkin-lintrc API_SPECTRAL_FILTER_REGEX_INCLUDE: (code/API_definitions/) From 2af801f66f2f9218955b3732b90951e702cb521e Mon Sep 17 00:00:00 2001 From: Rafal Artych <121048129+rartych@users.noreply.github.com> Date: Mon, 23 Feb 2026 13:15:53 +0100 Subject: [PATCH 11/20] Update .spectral-camara.yaml --- linting/config/.spectral-camara.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/linting/config/.spectral-camara.yaml b/linting/config/.spectral-camara.yaml index b204cfa..c697576 100644 --- a/linting/config/.spectral-camara.yaml +++ b/linting/config/.spectral-camara.yaml @@ -1,3 +1,3 @@ extends: - ./.spectral.yaml - - ./.spectral-owasp.yaml + - ./.spectral-owasp-target.yaml From 336b1b32c07a944e2efdc628da4de48d945e07d9 Mon Sep 17 00:00:00 2001 From: Rafal Artych <121048129+rartych@users.noreply.github.com> Date: Mon, 23 Feb 2026 13:24:50 +0100 Subject: [PATCH 12/20] Update API Spectral config file reference --- .github/workflows/pr_validation.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/pr_validation.yml b/.github/workflows/pr_validation.yml index ceb6ea7..a64ec44 100644 --- a/.github/workflows/pr_validation.yml +++ b/.github/workflows/pr_validation.yml @@ -201,7 +201,7 @@ jobs: DISABLE: COPYPASTE,SPELL,JAVASCRIPT,MARKDOWN # OPENAPI_SPECTRAL is deprecated but still present in Megalinter v7 DISABLE_LINTERS: OPENAPI_SPECTRAL,YAML_PRETTIER,REPOSITORY_GRYPE,REPOSITORY_SEMGREP,REPOSITORY_DEVSKIM,REPOSITORY_KICS,REPOSITORY_TRIVY,REPOSITORY_TRIVY_SBOM,REPOSITORY_TRUFFLEHOG,REPOSITORY_CHECKOV,REPOSITORY_GITLEAKS,YAML_V8R,JAVA_PMD - API_SPECTRAL_CONFIG_FILE: .spectral-camara.yaml + API_SPECTRAL_CONFIG_FILE: .spectral-owasp-target.yaml YAML_YAMLLINT_CONFIG_FILE: .yamllint.yaml GHERKIN_GHERKIN_LINT_CONFIG_FILE: .gherkin-lintrc API_SPECTRAL_FILTER_REGEX_INCLUDE: (code/API_definitions/) From d37060ea89dab8182749e221d3804043f6473d58 Mon Sep 17 00:00:00 2001 From: Rafal Artych <121048129+rartych@users.noreply.github.com> Date: Mon, 23 Feb 2026 13:33:52 +0100 Subject: [PATCH 13/20] Update API Spectral config file reference --- .github/workflows/pr_validation.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/pr_validation.yml b/.github/workflows/pr_validation.yml index a64ec44..ceb6ea7 100644 --- a/.github/workflows/pr_validation.yml +++ b/.github/workflows/pr_validation.yml @@ -201,7 +201,7 @@ jobs: DISABLE: COPYPASTE,SPELL,JAVASCRIPT,MARKDOWN # OPENAPI_SPECTRAL is deprecated but still present in Megalinter v7 DISABLE_LINTERS: OPENAPI_SPECTRAL,YAML_PRETTIER,REPOSITORY_GRYPE,REPOSITORY_SEMGREP,REPOSITORY_DEVSKIM,REPOSITORY_KICS,REPOSITORY_TRIVY,REPOSITORY_TRIVY_SBOM,REPOSITORY_TRUFFLEHOG,REPOSITORY_CHECKOV,REPOSITORY_GITLEAKS,YAML_V8R,JAVA_PMD - API_SPECTRAL_CONFIG_FILE: .spectral-owasp-target.yaml + API_SPECTRAL_CONFIG_FILE: .spectral-camara.yaml YAML_YAMLLINT_CONFIG_FILE: .yamllint.yaml GHERKIN_GHERKIN_LINT_CONFIG_FILE: .gherkin-lintrc API_SPECTRAL_FILTER_REGEX_INCLUDE: (code/API_definitions/) From 06e91b19536a91e870adb38e2d49c9fe82b90112 Mon Sep 17 00:00:00 2001 From: Rafal Artych <121048129+rartych@users.noreply.github.com> Date: Mon, 23 Feb 2026 13:39:06 +0100 Subject: [PATCH 14/20] Update repository in PR validation workflow --- .github/workflows/pr_validation.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/pr_validation.yml b/.github/workflows/pr_validation.yml index ceb6ea7..84db58a 100644 --- a/.github/workflows/pr_validation.yml +++ b/.github/workflows/pr_validation.yml @@ -172,7 +172,7 @@ jobs: if: steps.changes.outputs.release_plan_any_changed != 'true' || steps.validate.outputs.valid == 'true' uses: actions/checkout@v6 with: - repository: camaraproject/tooling + repository: rartych/tooling path: lint-config # using configurations from v0 floating tag ref: v0 From 4251b990912ce9548864211148b0c05d2ce275de Mon Sep 17 00:00:00 2001 From: Rafal Artych <121048129+rartych@users.noreply.github.com> Date: Mon, 23 Feb 2026 13:48:32 +0100 Subject: [PATCH 15/20] Update pr_validation.yml --- .github/workflows/pr_validation.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/pr_validation.yml b/.github/workflows/pr_validation.yml index 84db58a..49e5f96 100644 --- a/.github/workflows/pr_validation.yml +++ b/.github/workflows/pr_validation.yml @@ -175,7 +175,7 @@ jobs: repository: rartych/tooling path: lint-config # using configurations from v0 floating tag - ref: v0 + ref: extend_spectral_owasp sparse-checkout: | linting/config/ sparse-checkout-cone-mode: false From 91599fbf9001df6eaafda0744d216d53bea43d1a Mon Sep 17 00:00:00 2001 From: Rafal Artych <121048129+rartych@users.noreply.github.com> Date: Mon, 23 Feb 2026 13:57:32 +0100 Subject: [PATCH 16/20] Update OWASP spectral configuration file --- linting/config/.spectral-camara.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/linting/config/.spectral-camara.yaml b/linting/config/.spectral-camara.yaml index c697576..b204cfa 100644 --- a/linting/config/.spectral-camara.yaml +++ b/linting/config/.spectral-camara.yaml @@ -1,3 +1,3 @@ extends: - ./.spectral.yaml - - ./.spectral-owasp-target.yaml + - ./.spectral-owasp.yaml From 5d588ef60b25685b6b66c101132114c0fcbb2261 Mon Sep 17 00:00:00 2001 From: Rafal Artych <121048129+rartych@users.noreply.github.com> Date: Mon, 23 Feb 2026 16:12:23 +0100 Subject: [PATCH 17/20] Update repository and ref in PR validation workflow --- .github/workflows/pr_validation.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/pr_validation.yml b/.github/workflows/pr_validation.yml index 49e5f96..ceb6ea7 100644 --- a/.github/workflows/pr_validation.yml +++ b/.github/workflows/pr_validation.yml @@ -172,10 +172,10 @@ jobs: if: steps.changes.outputs.release_plan_any_changed != 'true' || steps.validate.outputs.valid == 'true' uses: actions/checkout@v6 with: - repository: rartych/tooling + repository: camaraproject/tooling path: lint-config # using configurations from v0 floating tag - ref: extend_spectral_owasp + ref: v0 sparse-checkout: | linting/config/ sparse-checkout-cone-mode: false From 1e9767688785e3c5206dde44dc427dca8a75e300 Mon Sep 17 00:00:00 2001 From: Rafal Artych <121048129+rartych@users.noreply.github.com> Date: Fri, 27 Feb 2026 13:31:29 +0100 Subject: [PATCH 18/20] Update .spectral-owasp.yaml --- linting/config/.spectral-owasp.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/linting/config/.spectral-owasp.yaml b/linting/config/.spectral-owasp.yaml index 7a64324..44f086d 100644 --- a/linting/config/.spectral-owasp.yaml +++ b/linting/config/.spectral-owasp.yaml @@ -2,7 +2,7 @@ # https://github.com/camaraproject/Commonalities/blob/main/documentation/Linting-rules.md # https://apistylebook.stoplight.io/docs/owasp-top-10-2023 # Changelog: -# - 05.02.2026: Initial version +# - 27.02.2026: Initial version # extends: ["@stoplight/spectral-owasp-ruleset"] extends: ["https://unpkg.com/@stoplight/spectral-owasp-ruleset/dist/ruleset.mjs"] From 0e100236c8d4ec20a5a2f9dd0f285b88f2ae4225 Mon Sep 17 00:00:00 2001 From: Rafal Artych <121048129+rartych@users.noreply.github.com> Date: Fri, 27 Feb 2026 13:34:07 +0100 Subject: [PATCH 19/20] Update .spectral-camara.yaml --- linting/config/.spectral-camara.yaml | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/linting/config/.spectral-camara.yaml b/linting/config/.spectral-camara.yaml index b204cfa..b9df7b2 100644 --- a/linting/config/.spectral-camara.yaml +++ b/linting/config/.spectral-camara.yaml @@ -1,3 +1,8 @@ +# CAMARA Project - main Spectral linting rulesetfile for use with Megalinter +# https://docs.stoplight.io/docs/spectral/83527ef2dd8c0-extending-rulesets +# Changelog: +# - 27.02.2026: Initial version + extends: - ./.spectral.yaml - ./.spectral-owasp.yaml From bce9c4ba9db41b6682b21ed7100deb9fd629d8f2 Mon Sep 17 00:00:00 2001 From: Rafal Artych <121048129+rartych@users.noreply.github.com> Date: Fri, 27 Feb 2026 13:35:31 +0100 Subject: [PATCH 20/20] Update .spectral-owasp-target.yaml --- linting/config/.spectral-owasp-target.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/linting/config/.spectral-owasp-target.yaml b/linting/config/.spectral-owasp-target.yaml index d960e06..973c807 100644 --- a/linting/config/.spectral-owasp-target.yaml +++ b/linting/config/.spectral-owasp-target.yaml @@ -3,7 +3,7 @@ # https://apistylebook.stoplight.io/docs/owasp-top-10-2023 # Changelog: # - 05.02.2026: Initial version -# - 09.02.2026: Target version (owasp:api4 original severity restored) +# - 27.02.2026: Target version (owasp:api4 original severity restored) # extends: ["@stoplight/spectral-owasp-ruleset"] extends: ["https://unpkg.com/@stoplight/spectral-owasp-ruleset/dist/ruleset.mjs"]