- Added the
no-invalid-schema-examplesandno-invalid-parameter-examplesto therecommendedruleset. Added theno-duplicated-tag-namesto thespecruleset. - Added configuration of Respect mTLS certificates on a per-domain basis.
- Updated @redocly/openapi-core to v2.8.0.
- Applied proxy settings during Respect execution.
- Updated @redocly/openapi-core to v2.7.1.
- Updated @redocly/openapi-core to v2.7.0.
- Added new rules for validating OpenAPI 3.2 description files:
spec-no-invalid-tag-parents,spec-example-values,spec-discriminator-defaultMapping, andspec-no-invalid-encoding-combinations. Deprecated theno-example-value-and-externalValuerule in favor ofspec-example-values.
- Updated @redocly/openapi-core to v2.6.0.
- Fixed an issue where the
no-http-verbs-in-pathsrule was incorrectly flagging path names containing the verbquery. - Updated @redocly/openapi-core to v2.5.1.
- Added response size to the
Respectterminal and JSON file outputs.
- Updated @redocly/respect-core to v2.5.0.
- Added the
no-secrets-maskingoption to the respect command, allowing raw (unmasked) output to be generated.
- Updated @redocly/respect-core to v2.4.0.
- Fixed an issue where JSONPath-based success criteria did not support property names with hyphens in
Respect. - Updated @redocly/openapi-core to v2.3.1.
- Added basic support for OpenAPI 3.2 specification.
- Updated @redocly/openapi-core to v2.3.0.
- Fixed an issue where the Respect workflow separator did not render correctly in GitHub CI environments.
- Added support for the
verboseoption in thelogincommand to provide additional output during authentication. - Updated @redocly/respect-core to v2.2.3.
- Resolved an issue with CLI dependencies to ensure proper package resolution.
- Updated @redocly/openapi-core to v2.2.2.
- Fixed an issue where the
remove-unused-componentsdecorator was not functioning when configured at the API level. - Updated @redocly/openapi-core to v2.2.1.
- Adjusted the calculation of Respect's workflow-level
totalTimeMsto sum the network request times of all steps.
- Updated @redocly/respect-core to v2.2.0.
- Improved the message format for Respect's
status code check. - Fixed handling of input parameters when invoking step target workflows in Respect.
- Updated @redocly/respect-core to v2.1.5.
- Fixed undefined variable used in the
remove-unused-componentsdecorator, which prevented an invalid reference error from being reported. - Updated @redocly/openapi-core to v2.1.4.
- Updated authentication logic to get the residency from
scorecard.fromProjectUrl. - Updated @redocly/openapi-core to v2.1.3.
- Updated @redocly/openapi-core to v2.1.2.
- Updated @redocly/openapi-core to v2.1.1.
- Updated authentication logic to ensure consistency with the VS Code extension's behavior.
- Improved error reporting and handling for Digest authentication failures in Respect. Now users receive clearer feedback when required headers or status codes are missing.
- Fixed
pushandpush-statuscommands mistakenly requiring the--max-execution-timeoption. - Fixed an issue where wildcard file patterns were not recognized in the Docker image.
- Updated @redocly/respect-core to v2.1.0.
- Updated @redocly/openapi-core to v2.0.8.
- Improved Respect verbose logs to display response headers.
- Updated @redocly/respect-core to v2.0.7.
- Fixed an issue where files specified in decorators parameters were not always resolved correctly. The resolution logic now properly locates the specified files relative to the config file for
info-description-override,media-type-examples-override,operation-description-override, andtag-description-overridedecorators. - Improved messaging to clarify when API alias configuration is implicitly applied during linting or bundling by filename.
- Updated the
retryAfterproperty in Respect to use seconds (instead of milliseconds) for consistency with the Arazzo specification. - Updated @redocly/openapi-core to v2.0.6.
- Fixed an issue where the root config was not properly merged with the
apisconfig. - Resolved an issue that caused configuration parsing to fail when the config value was set to
null. - Improved join command server handling for specifications with differing servers.
- Updated @redocly/respect-core to v2.0.5.
- Fixed an issue where the
openapiconfig options were ignored when running thebuild-docscommand. - Ensure
externalRefResolveroption is correctly passed to nested workflow contexts. - Updated @redocly/respect-core to v2.0.4.
- Fixed type definitions for Respect
inputandserveroptions to support both string and string[] values. - Fixed binary response data in
Respectresults by properly encoding it as base64. - Updated @redocly/respect-core to v2.0.3.
- Made
executionTimeoutparameter optional in therunfunction exported fromrespect-core. - Updated @redocly/respect-core to v2.0.2.
- Fixed an issue where the
no-required-schema-properties-undefinedrule incorrectly resolved nested$refs relative to the file in which they were defined. - Fixed an issue where multipart form-data parameters were not properly resolved and evaluated before sending requests.
- Updated @redocly/openapi-core to v2.0.1.
- Removed backward compatibility for the
specrule. Usestructinstead. - Removed support for the deprecated
apiDefinitionsoption in the Redocly config. Useapisinstead. Removed thelabelsfield within theapissection, which was associated with the legacy Redocly API Registry product. - Removed support for default config file names other than
redocly.yaml. - Removed support for the deprecated
features.openapiandfeatures.mockServerconfiguration options. UseopenapiandmockServerdirectly instead. - Removed backward compatibility for the deprecated
lintandstyleguideoptions in the Redocly config. Userules,decoratorsand other related options on the root level instead. - Removed the deprecated
disallowAdditionalPropertiesoption support in rules. UseallowAdditionalPropertiesinstead. - Removed support for the deprecated
themeproperty of Redocly config. All the properties ofthemeare now available in the config root. - Removed the deprecated
path-excludes-patternsandinfo-license-urlrules. - Removed the deprecated
undefinedassertion. Usedefinedinstead. - Removed support for the legacy Redocly API Registry in favor of the new Reunite platform. Reunite provides improved API management capabilities and better integration with Redocly's tooling ecosystem. Migrated the
loginandpushcommands to work exclusively with Reunite. Removed thepreview-docscommand as part of platform modernization. Use thepreviewcommand instead. - Removed support for the deprecated
referenceDocsoption, which was related to the legacy Reference docs product. - Removed support for the deprecated
assert/prefix in configurable rules. Userule/prefix instead. - Migrated the codebase to ES Modules from CommonJS, bringing improved code organization and better support for modern JavaScript features. Update to Node.js version 20.19.0+, 22.12.0+, or 23+.
Added
x-securityextension for Respect that enables secure handling of authentication in Arazzo workflows. Use this extension to:- Define security schemes at the step level using either predefined schemes or inline definitions
- Pass values of secrets (passwords, tokens, API keys)
- Support multiple authentication types including API Key (query, header, or cookie), Basic Authentication, Bearer Token, Digest Authentication, OAuth2, and OpenID Connect
- Automatically transform security parameters into appropriate HTTP headers or query parameters
Added environment variable support for CLI arguments using Yargs
.env()method to parse environment variables with matching prefixes.Added validation for JSON Schema format.
Extracted
nullablevalidation from thestructrule into a newnullable-type-siblingrule for OpenAPI 3.0. This allows users to disablenullablevalidation separately from other structural checks.Configured the
specruleset for OpenAPI, AsyncAPI, Arazzo, and Overlay specifications. This ruleset is designed to strictly follow the specifications.Added the
no-duplicated-tag-namesrule to check for duplications in thetagsfield in API descriptions.Enabled
no-required-schema-properties-undefined,no-schema-type-mismatch, andno-enum-type-mismatchrules for AsyncAPI and Arazzo specifications. Adjusted the rules' severities in therecommendedandminimalrulesets. Refer to the following table:Rule \ Ruleset recommended minimal no-required-schema-properties-undefined off->warnoff->warnno-enum-type-mismatch errorwarnno-schema-type-mismatch warn->erroroff->warnImplemented automatic masking of sensitive fields (such as tokens and passwords) in response bodies to enhance security and prevent accidental exposure of secrets in logs and outputs.
Added new CLI options for the
respectcommand to improve test execution control.
- Fixed plugins validation in config files referenced in the
extendssection. - Fixed
no-undefined-server-variablecrash when encounteringnullvalues in the server list. - Refactored
@redocly/respect-coreto eliminate Node.js-specific dependencies, improving cross-platform compatibility. - Updated Redoc to v2.5.0.
- Fixed alias detection when using
--configfrom a different folder than the current working directory. - Resolved an issue where
dotenv@16.6.0injected an unintended message into the output. - Fixed Redocly CLI to correctly read
residencyfrom the Redocly configuration file. - Improved Respect's error handling when server URLs are missing from both OpenAPI descriptions and CLI options.
- Updated @redocly/respect-core to v2.0.0.
- Removed support for the deprecated
themeproperty of Redocly config. All the properties ofthemeare now available in the config root.
- Updated @redocly/openapi-core to v2.0.0-next.10.
- Refactored
@redocly/respect-coreto eliminate Node.js-specific dependencies, improving cross-platform compatibility. - Updated @redocly/openapi-core to v2.0.0-next.9.
- Removed support for default config file names other than
redocly.yaml.
Enabled
no-required-schema-properties-undefined,no-schema-type-mismatch, andno-enum-type-mismatchrules for AsyncAPI and Arazzo specifications. Adjusted the rules' severities in therecommendedandminimalrulesets. Refer to the following table:Rule \ Ruleset recommended minimal no-required-schema-properties-undefined off->warnoff->warnno-enum-type-mismatch errorwarnno-schema-type-mismatch warn->erroroff->warn
- Fixed plugins validation in config files referenced in the
extendssection. - Updated @redocly/openapi-core to v2.0.0-next.8.
- Updated @redocly/openapi-core to v2.0.0-next.7.
- Updated @redocly/openapi-core to v2.0.0-next.6.
- Removed the deprecated
path-excludes-patternsandinfo-license-urlrules.
- Updated @redocly/openapi-core to v2.0.0-next.5.
- Added validation for JSON Schema format.
- Updated @redocly/openapi-core to v2.0.0-next.4.
- Configured the
specruleset for OpenAPI, AsyncAPI, Arazzo, and Overlay specifications. This ruleset is designed to strictly follow the specifications.
- Updated @redocly/openapi-core to v2.0.0-next.3.
- Resolved an issue where
dotenv@16.6.0injected an unintended message into the output. - Updated @redocly/openapi-core to v2.0.0-next.2.
- Extracted
nullablevalidation from thestructrule into a newnullable-type-siblingrule for OpenAPI 3.0. This allows users to disablenullablevalidation separately from other structural checks. - Added the
no-duplicated-tag-namesrule to check for duplications in thetagsfield in API descriptions. - Implemented automatic masking of sensitive fields (such as tokens and passwords) in response bodies to enhance security and prevent accidental exposure of secrets in logs and outputs.
- Updated @redocly/openapi-core to v2.0.0-next.1.
- Removed backward compatibility for the
specrule. Usestructinstead. - Removed support for the deprecated
apiDefinitionsoption in the Redocly config. Useapisinstead. Removed thelabelsfield within theapissection, which was associated with the legacy Redocly API Registry product. - Removed support for the deprecated
features.openapiandfeatures.mockServerconfiguration options. UseopenapiandmockServerdirectly instead. - Removed backward compatibility for the deprecated
lintandstyleguideoptions in the Redocly config. Userules,decoratorsand other related options on the root level instead. - Removed the deprecated
disallowAdditionalPropertiesoption support in rules. UseallowAdditionalPropertiesinstead. - Removed the deprecated
undefinedassertion. Usedefinedinstead. - Removed support for the legacy Redocly API Registry in favor of the new Reunite platform. Reunite provides improved API management capabilities and better integration with Redocly's tooling ecosystem. Migrated the
loginandpushcommands to work exclusively with Reunite. Removed thepreview-docscommand as part of platform modernization. Use thepreviewcommand instead. - Removed support for the deprecated
referenceDocsoption, which was related to the legacy Reference docs product. - Removed support for the deprecated
assert/prefix in configurable rules. Userule/prefix instead. - Migrated the codebase to ES Modules from CommonJS, bringing improved code organization and better support for modern JavaScript features. Update to Node.js version 20.19.0+, 22.12.0+, or 23+.
Added
x-securityextension for Respect that enables secure handling of authentication in Arazzo workflows. Use this extension to:- Define security schemes at the step level using either predefined schemes or inline definitions
- Pass values of secrets (passwords, tokens, API keys)
- Support multiple authentication types including API Key (query, header, or cookie), Basic Authentication, Bearer Token, Digest Authentication, OAuth2, and OpenID Connect
- Automatically transform security parameters into appropriate HTTP headers or query parameters
Added environment variable support for CLI arguments using Yargs
.env()method to parse environment variables with matching prefixes.Added new CLI options for the
respectcommand to improve test execution control.
- Fixed
no-undefined-server-variablecrash when encounteringnullvalues in the server list. - Updated Redoc to v2.5.0.
- Fixed alias detection when using
--configfrom a different folder than the current working directory. - Fixed Redocly CLI to correctly read
residencyfrom the Redocly configuration file. - Improved Respect's error handling when server URLs are missing from both OpenAPI descriptions and CLI options.
- Updated @redocly/respect-core to v2.0.0-next.0.