No Script Tags In Markdown

no-script-tags-in-markdown · built-in

info experience: security spec: document

Markdown descriptions must not have "

Rule definition

The full Spotlight rule — drop it into a ruleset (.spotlight.yaml / .spectral.yaml) and run it with any Spotlight tool.

no-script-tags-in-markdown:
  title: No Script Tags In Markdown
  reference: https://spotlight-rules.com/spec/rules/openapi/no-script-tags-in-markdown/
  description: Markdown descriptions must not have "<script>" tags.
  message: Markdown descriptions must not have "<script>" tags.
  severity: info
  given: $..[description,title]
  then:
    function: pattern
    functionOptions:
      notMatch: <script
  tags:
    - format:openapi
    - spec:document
    - experience:security
  prompt: "You are editing an OpenAPI document to satisfy the Spotlight API
    governance rule 'no-script-tags-in-markdown' (No Script Tags In Markdown).
    Requirement: Markdown descriptions must not have \"<script>\" tags. To fix:
    Ensure the targeted value does NOT match the regular expression `<script`;
    rename or rewrite any value that does. This rule is evaluated at the
    JSONPath `$..[description,title]` — inspect every location it matches and
    correct only what violates the rule. Make the smallest change that satisfies
    the rule, leave all unrelated content, key order, comments, and formatting
    unchanged, and keep the document valid OpenAPI. Return only the complete
    corrected document, with no commentary."

AI fix prompt — send this to Claude, Gemini, or ChatGPT with your artifact to auto-fix this rule

You are editing an OpenAPI document to satisfy the Spotlight API governance rule 'no-script-tags-in-markdown' (No Script Tags In Markdown). Requirement: Markdown descriptions must not have "