feat: security support added to operation and operationTrait

[LokeshRishi]

2 passing (789ms)

----------|---------|----------|---------|---------|-------------------

File	% Stmts	% Branch	% Funcs	% Lines	Uncovered Line #s
All files	100	100	100	100
index.js	100	100	100	100
----------	---------	----------	---------	---------	-------------------

Description
Updates to include 'security' at operation and operationTrait level.

Related issue(s)
asyncapi/spec#584

[github-actions]

Welcome to AsyncAPI. Thanks a lot for creating your first pull request. Please check out our contributors guide useful for opening a pull request.
Keep in mind there are also other channels you can use to interact with AsyncAPI community. For more details check out this issue.

[sonarqubecloud]

Kudos, SonarCloud Quality Gate passed!   

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells

No Coverage information
No Duplication information

[smoya]

Thanks for the PR @LokeshRishi! would you mind changing the title of this PR adding a prefix to be compliant with Conventional Commits? feat: prefix seems the right one.

[smoya]

Would it make sense to extract this into a new definition called SecurityRequirements or similar? Then you will just need to use it by "$ref": "#/definitions/SecurityRequirements"

[sekharbans-ebay]

Would it make sense to extract this into a new definition called SecurityRequirements or similar? Then you will just need to use it by "$ref": "#/definitions/SecurityRequirements"

Hi @smoya - Its an array of SecurityRequirements. Not sure if just indicating an array of a complex definition warrants a new definition. If so, such a pattern would need to apply consistently to all similar constructs that refer to an array (tags for example). Not sure it carries much benefits. At least for me - not creating a new definition but just knowing its an array of an existing definition is easier. Up to you folks :)

[smoya]

Fair enough 👍 I agree we would need to be consistent and lot of changes will need to be applied.

[smoya]

LGTM, however we need a +1 of a Code Owner.

[dalelane]

LGTM

[derberg]

@fmvilas only your approval is missing

I put asyncapi/spec#584 on Stage 2,
once we merge this and parser PR, then we can set Stage 3 and merge

[smoya]

/rtm

[asyncapi-bot]

Hello, @smoya! 👋🏼
This PR is not up to date with the base branch and can't be merged.
Please update your branch manually with the latest version of the base branch.
PRO-TIP: Add a comment to your PR with the text: /au or /autoupdate and our bot will take care of updating the branch in the future. The only requirement for this to work is to enable Allow edits from maintainers option in your PR.
Thanks 😄

[smoya]

/au

[asyncapi-bot]

🎉 This PR is included in version 2.14.0-2022-04-release.1 🎉

The release is available on:

• npm package (@2022-04-release dist-tag)
• GitHub release

Your semantic-release bot 📦🚀