Security object for operations, if defined, must define a security scheme, otherwise it should be considered an error
security section of the operation path applies an authentication method to that operation. Leaving it blank implies an exposed API without authentication.
Ensure that you have an authentication type in the security section of your path. For example:
paths: "/": get: operationId: id summary: example - security:  + security: + - OAuth2: + - write
Updated 20 days ago