truespec
v0.1.2
Published
OpenAPI spec drift checks for CI and local use.
Downloads
19
Maintainers
alessio.bianchiniReadme
TrueSpec CLI (MVP)
Detect OpenAPI spec drift by comparing two OpenAPI files.
Install (npm)
Quick run:
npx truespec diff --base openapi-base.yaml --head openapi-head.yamlGlobal install:
npm install -g truespec
truespec diff --base openapi-base.yaml --head openapi-head.yamlLocal development
pnpm installUsage
pnpm dev -- diff --base examples/openapi-base.yaml --head examples/openapi-head.yamlRemote specs (URLs) are supported:
npx truespec diff --base https://example.com/openapi-base.yaml --head https://example.com/openapi-head.yamlAdd auth headers for private URLs:
TRUESPEC_AUTH_TOKEN=your-token \
npx truespec diff --base https://example.com/openapi-base.yaml --head https://example.com/openapi-head.yamlCLI flags also work:
npx truespec diff \
--base https://example.com/openapi-base.yaml \
--head https://example.com/openapi-head.yaml \
--auth-token your-token \
--auth-scheme Bearer \
--cache-bustFor custom headers:
TRUESPEC_HTTP_HEADERS='{"Authorization":"Bearer your-token","X-API-Key":"abc"}' \
npx truespec diff --base https://example.com/openapi-base.yaml --head https://example.com/openapi-head.yamlCaching for remote specs:
TRUESPEC_CACHE=0disables cachingTRUESPEC_CACHE_TTL_SECONDS=300sets the cache TTL (default 300s)TRUESPEC_CACHE_BUST=1forces a fresh downloadTRUESPEC_AUTH_SCHEME=Bearer(optional override for auth token scheme)
Fail on breaking changes (CI):
pnpm dev -- diff --base examples/openapi-base.yaml --head examples/openapi-head.yaml --fail-on breakingDo not fail the command (default):
pnpm dev -- diff --base examples/openapi-base.yaml --head examples/openapi-head.yaml --fail-on noneBuild and run:
pnpm build
node dist/cli.js diff --base examples/openapi-base.yaml --head examples/openapi-head.yamlOutput
breaking: removed operations, removed response status codes, removed schema fields, enum/type/nullable changes, removed union variantswarning: newly required params, request bodies, or request fieldsinfo: added operations, response status codes, response fields, nullable or union variants
Example output:
Summary
Breaking: 5 | Warning: 3 | Info: 3
BREAKING (5)
- Removed operation DELETE /v1/users/{id}
- Removed response 404 for GET /v1/users
- Enum changed at response.200.body.status (removed: "disabled"; added: "pending")
- Removed field response.200.body.email
- Type changed at request.body.price (number -> string)
WARNING (3)
- New required parameter query:dryRun for PUT /v1/plans
- Request body is now required for PUT /v1/plans
- New required field request.body.name
INFO (3)
- Added operation GET /v1/billing
- Added response 422 for GET /v1/users
- Added field response.200.body.tierJSON output
pnpm dev -- diff --base examples/openapi-base.yaml --head examples/openapi-head.yaml --jsonOutput formats
pnpm dev -- diff --base examples/openapi-base.yaml --head examples/openapi-head.yaml --format markdownSupported formats:
text(default)markdownjson(or--json)
Exit codes
0: completed, policy passed1: policy failed (--fail-on)2: runtime error (invalid spec, parse error, etc.)
GitHub Actions (PR summary)
Write the Markdown report into the PR summary:
name: TrueSpec Diff
on:
pull_request:
paths:
- "specs/openapi.yaml"
jobs:
diff:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
with:
fetch-depth: 0
- uses: pnpm/action-setup@v4
with:
version: 10
- uses: actions/setup-node@v4
with:
node-version: 20
- name: Prepare base spec
run: |
git show origin/${{ github.base_ref }}:specs/openapi.yaml > /tmp/openapi-base.yaml
- name: TrueSpec diff
run: |
set -euo pipefail
npx truespec diff \
--base /tmp/openapi-base.yaml \
--head specs/openapi.yaml \
--fail-on breaking \
--format markdown | tee -a "$GITHUB_STEP_SUMMARY"See examples/github-action.yml for the ready-to-copy workflow file.
The script also supports env vars: TRUESPEC_BASE, TRUESPEC_HEAD, TRUESPEC_FAIL_ON, TRUESPEC_FORMAT.