From 4d625802c7f1d8287312d1a08cd6d6261ab0f692 Mon Sep 17 00:00:00 2001
From: Markeljan Sokoli <Markeljan19@gmail.com>
Date: Wed, 2 Jul 2025 09:14:05 -0400
Subject: [PATCH] Preserve critical OpenAPI fields during spec sanitization

Updates the sanitize function to retain root-level OpenAPI fields such as 'paths', 'components', 'security', and 'tags' even if they are empty. Also ensures the 'paths' field is always present in the sanitized spec, addressing issues with missing required fields in downstream processing.
---
 app/api/plugins/[pluginId]/route.ts | 32 +++++++++++++++++++++--------
 1 file changed, 24 insertions(+), 8 deletions(-)

diff --git a/app/api/plugins/[pluginId]/route.ts b/app/api/plugins/[pluginId]/route.ts
index 1267c47..cde5c0e 100644
--- a/app/api/plugins/[pluginId]/route.ts
+++ b/app/api/plugins/[pluginId]/route.ts
@@ -530,11 +530,13 @@ const sanitizeSpec = async (
   const validatedSpec = await SwaggerParser.validate(spec);
   // remove empty objects and arrays form a spec or spec part
   // eslint-disable-next-line @typescript-eslint/no-explicit-any
-  const sanitize = (value: unknown): any => {
+  const sanitize = (value: unknown, currentPath: string[] = []): any => {
     if (Array.isArray(value)) {
       // Handle arrays
       const sanitizedArray = value
-        .map(sanitize)
+        .map((item, index) =>
+          sanitize(item, [...currentPath, index.toString()])
+        )
         .filter(
           (item) =>
             item !== null &&
@@ -552,20 +554,34 @@ const sanitizeSpec = async (
       // Handle objects
       const sanitizedObj: Record<string, JSONValue> = {};
       for (const [key, val] of Object.entries(value)) {
-        const sanitizedValue = sanitize(val);
+        const sanitizedValue = sanitize(val, [...currentPath, key]);
         if (sanitizedValue !== undefined && sanitizedValue !== null) {
           sanitizedObj[key] = sanitizedValue;
         }
       }
-      return Object.keys(sanitizedObj).length > 0 ? sanitizedObj : null;
+
+      // Preserve critical OpenAPI fields even when empty
+      const criticalFields = ["paths", "components", "security", "tags"];
+      const currentField = currentPath[currentPath.length - 1];
+      const isRootLevelCriticalField =
+        currentPath.length === 1 && criticalFields.includes(currentField);
+
+      return Object.keys(sanitizedObj).length > 0 || isRootLevelCriticalField
+        ? sanitizedObj
+        : null;
     }
     // Handle primitive values
-    return value === "" || value === null || value === undefined
-      ? null
-      : value;
+    return value === "" || value === null || value === undefined ? null : value;
   };
 
-  return sanitize(validatedSpec);
+  const sanitized = sanitize(validatedSpec);
+
+  // Ensure paths field is always present, even if empty
+  if (sanitized && typeof sanitized === "object" && !sanitized.paths) {
+    sanitized.paths = {};
+  }
+
+  return sanitized;
 };
 
 const transformPlugin = (id: string, spec: BitteOpenAPISpec) => {