From a010558190e00889b68a6c0b0ceba85a795413d3 Mon Sep 17 00:00:00 2001
From: tx3stn <14163530+tx3stn@users.noreply.github.com>
Date: Sat, 27 Dec 2025 18:17:23 +0000
Subject: [PATCH] add strict validation setting with error for invalid 3.0
 syntax

---
 bundler/bundler.go                        |   7 +-
 bundler/bundler_composer.go               |  20 +-
 bundler/bundler_strict_validation_test.go | 236 ++++++++++++++++++++++
 3 files changed, 259 insertions(+), 4 deletions(-)
 create mode 100644 bundler/bundler_strict_validation_test.go

diff --git a/bundler/bundler.go b/bundler/bundler.go
index bfbce654..01b6c95d 100644
--- a/bundler/bundler.go
+++ b/bundler/bundler.go
@@ -114,7 +114,8 @@ func BundleDocumentWithConfig(model *v3.Document, bundleConfig *BundleInlineConf
 
 // BundleCompositionConfig is used to configure the composition of OpenAPI documents when using BundleDocumentComposed.
 type BundleCompositionConfig struct {
-	Delimiter string // Delimiter is used to separate clashing names. Defaults to `__`.
+	Delimiter           string // Delimiter is used to separate clashing names. Defaults to `__`.
+	StrictValidation    bool   // StrictValidation will cause bundling to fail on invalid OpenAPI specs (e.g. $ref with siblings)
 }
 
 // BundleInlineConfig provides configuration options for inline bundling.
@@ -174,7 +175,9 @@ func compose(model *v3.Document, compositionConfig *BundleCompositionConfig) ([]
 		compositionConfig:     compositionConfig,
 		discriminatorMappings: discriminatorMappings,
 	}
-	handleIndex(cf)
+	if err := handleIndex(cf); err != nil {
+		return nil, err
+	}
 
 	processedNodes := orderedmap.New[string, *processRef]()
 	var errs []error
diff --git a/bundler/bundler_composer.go b/bundler/bundler_composer.go
index a0fa0fa0..e80e94b9 100644
--- a/bundler/bundler_composer.go
+++ b/bundler/bundler_composer.go
@@ -5,6 +5,7 @@ package bundler
 
 import (
 	"context"
+	"fmt"
 	"strings"
 	"sync"
 
@@ -38,7 +39,7 @@ type handleIndexConfig struct {
 // handleIndex will recursively explore the indexes and their references, building a map of references
 // to be processed later. It will also check for circular references and avoid infinite loops.
 // everything is stored in the handleIndexConfig, which is passed around to avoid passing too many parameters.
-func handleIndex(c *handleIndexConfig) {
+func handleIndex(c *handleIndexConfig) error {
 	mappedReferences := c.idx.GetMappedReferences()
 	sequencedReferences := c.idx.GetRawReferencesSequenced()
 	var indexesToExplore []*index.SpecIndex
@@ -46,6 +47,18 @@ func handleIndex(c *handleIndexConfig) {
 	for _, sequenced := range sequencedReferences {
 		mappedReference := mappedReferences[sequenced.FullDefinition]
 
+		// Check for invalid sibling properties if strict validation is enabled
+		if c.compositionConfig.StrictValidation &&
+				c.idx.GetConfig().SpecInfo.VersionNumeric == 3.0 &&
+				sequenced.HasSiblingProperties {
+			siblingKeys := make([]string, 0, len(sequenced.SiblingProperties))
+			for key := range sequenced.SiblingProperties {
+				siblingKeys = append(siblingKeys, key)
+			}
+			return fmt.Errorf("invalid OpenAPI 3.0 specification: $ref cannot have sibling properties. Found $ref '%s' with siblings %v at line %d, column %d",
+				sequenced.FullDefinition, siblingKeys, sequenced.Node.Line, sequenced.Node.Column)
+		}
+
 		// if we're in the root document, don't bundle anything.
 		refExp := strings.Split(sequenced.FullDefinition, "#/")
 		var foundIndex *index.SpecIndex
@@ -90,8 +103,11 @@ func handleIndex(c *handleIndexConfig) {
 
 	for _, idx := range indexesToExplore {
 		c.idx = idx
-		handleIndex(c)
+		if err := handleIndex(c); err != nil {
+			return err
+		}
 	}
+	return nil
 }
 
 // processReference will extract a reference from the current index, and transform it into a first class
diff --git a/bundler/bundler_strict_validation_test.go b/bundler/bundler_strict_validation_test.go
new file mode 100644
index 00000000..73e26a96
--- /dev/null
+++ b/bundler/bundler_strict_validation_test.go
@@ -0,0 +1,236 @@
+package bundler
+
+import (
+	"os"
+	"path/filepath"
+	"testing"
+
+	"github.com/pb33f/libopenapi/datamodel"
+	"github.com/stretchr/testify/assert"
+	"github.com/stretchr/testify/require"
+)
+
+func TestStrictValidation_RefWithSiblings_ShouldError(t *testing.T) {
+	spec := `openapi: 3.0.0
+info:
+  title: Test API
+  version: 1.0.0
+paths:
+  /test:
+    get:
+      responses:
+        '200':
+          description: OK
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/TestSchema'
+                description: This is invalid - $ref cannot have siblings
+components:
+  schemas:
+    TestSchema:
+      type: object
+      properties:
+        name:
+          type: string`
+
+	config := &BundleCompositionConfig{
+		StrictValidation: true,
+	}
+
+	docConfig := &datamodel.DocumentConfiguration{
+		AllowFileReferences: false,
+	}
+
+	_, err := BundleBytesComposed([]byte(spec), docConfig, config)
+
+	require.Error(t, err, "Strict validation must fail on invalid $ref siblings for 3.0 specs")
+	assert.Contains(
+		t,
+		err.Error(),
+		"invalid OpenAPI 3.0 specification: $ref cannot have sibling properties",
+	)
+	assert.Contains(t, err.Error(), "siblings [description]")
+	assert.Contains(t, err.Error(), "line 14")
+	assert.Contains(t, err.Error(), "column 17")
+}
+
+func TestStrictValidation_RefWithoutSiblings_ShouldSucceed(t *testing.T) {
+	spec := `openapi: 3.0.0
+info:
+  title: Test API
+  version: 1.0.0
+paths:
+  /test:
+    get:
+      responses:
+        '200':
+          description: OK
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/TestSchema'
+components:
+  schemas:
+    TestSchema:
+      type: object
+      properties:
+        name:
+          type: string`
+
+	config := &BundleCompositionConfig{
+		StrictValidation: true,
+	}
+
+	docConfig := &datamodel.DocumentConfiguration{
+		AllowFileReferences: false,
+	}
+
+	result, err := BundleBytesComposed([]byte(spec), docConfig, config)
+
+	require.NoError(t, err, "Valid $ref without siblings should succeed")
+	assert.NotNil(t, result)
+	assert.True(t, len(result) > 0)
+}
+
+func TestStrictValidation_Disabled_ShouldNotError(t *testing.T) {
+	spec := `openapi: 3.0.0
+info:
+  title: Test API
+  version: 1.0.0
+paths:
+  /test:
+    get:
+      responses:
+        '200':
+          description: OK
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/TestSchema'
+                description: This would be invalid with strict validation
+components:
+  schemas:
+    TestSchema:
+      type: object
+      properties:
+        name:
+          type: string`
+
+	config := &BundleCompositionConfig{
+		StrictValidation: false, // Disabled - should not error
+	}
+
+	docConfig := &datamodel.DocumentConfiguration{
+		AllowFileReferences: false,
+	}
+
+	result, err := BundleBytesComposed([]byte(spec), docConfig, config)
+
+	require.NoError(t, err, "Disabled strict validation should allow invalid siblings")
+	assert.NotNil(t, result)
+}
+
+func TestStrictValidation_openapi_3_1_ShouldNotError(t *testing.T) {
+	spec := `openapi: 3.1.0
+info:
+  title: Test API
+  version: 1.0.0
+paths:
+  /test:
+    get:
+      responses:
+        '200':
+          description: OK
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/TestSchema'
+                description: This is valid with strict validation in 3.1 spec
+components:
+  schemas:
+    TestSchema:
+      type: object
+      properties:
+        name:
+          type: string`
+
+	config := &BundleCompositionConfig{
+		StrictValidation: true,
+	}
+
+	docConfig := &datamodel.DocumentConfiguration{
+		AllowFileReferences: false,
+	}
+
+	result, err := BundleBytesComposed([]byte(spec), docConfig, config)
+
+	require.NoError(t, err, "Strict validation in OpenAPI 3.1 spec should allow invalid siblings")
+	assert.NotNil(t, result)
+}
+
+func TestStrictValidation_RecursiveIndexError(t *testing.T) {
+	spec := `openapi: 3.0.0
+info:
+  title: Test API
+  version: 1.0.0
+paths:
+  /test:
+    get:
+      responses:
+        '200':
+          $ref: 'external.yaml#/components/responses/TestResponse'
+components:
+  schemas:
+    TestSchema:
+      type: object`
+
+	external := `openapi: 3.0.0
+components:
+  responses:
+    TestResponse:
+      description: OK
+      content:
+        application/json:
+          schema:
+            $ref: '#/components/schemas/ExternalSchema'
+            description: Invalid sibling property
+  schemas:
+    ExternalSchema:
+      type: object
+      properties:
+        name:
+          type: string`
+
+	tmp := t.TempDir()
+
+	require.NoError(t, os.WriteFile(filepath.Join(tmp, "main.yaml"), []byte(spec), 0o644))
+	require.NoError(t, os.WriteFile(filepath.Join(tmp, "external.yaml"), []byte(external), 0o644))
+
+	mainBytes, err := os.ReadFile(filepath.Join(tmp, "main.yaml"))
+	require.NoError(t, err)
+
+	config := &BundleCompositionConfig{
+		StrictValidation: true,
+	}
+
+	docConfig := &datamodel.DocumentConfiguration{
+		BasePath:            tmp,
+		AllowFileReferences: true,
+	}
+
+	_, err = BundleBytesComposed(mainBytes, docConfig, config)
+	require.Error(t, err)
+
+	assert.Contains(
+		t,
+		err.Error(),
+		"invalid OpenAPI 3.0 specification: $ref cannot have sibling properties",
+	)
+}
+
+func TestBundleCompositionConfig_DefaultValues(t *testing.T) {
+	config := &BundleCompositionConfig{}
+	assert.False(t, config.StrictValidation)
+	assert.Empty(t, config.Delimiter)
+}