opendatahub-io/doc-validate
helpers/skills/doc-validate/SKILL.md
Use when you need to validate AsciiDoc documentation for technical accuracy using Extract-Identify-Validate pattern. Runs Vale, asciidoctor, lychee, YAML syntax checks, and LLM-powered cross-reference validation. Produces workspace/validation-findings.json.
$ install --global
skillsauthnpx skillsauth add opendatahub-io/ai-helpers doc-validateInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: May 2, 2026, 6:16 AM189.3s5 files scanned
SKILL.md
- name:
- doc-validate
- description:
- >
- argument-hint:
- <file-or-directory> [--context workspace/context-package.json]
- model:
- claude-sonnet-4-5
- effort:
- high
doc-validate
Validate AsciiDoc documentation files for technical accuracy, style compliance, and structural correctness.
Parse arguments
$ARGUMENTS contains:
- Target: file path, directory, or glob pattern for AsciiDoc files to validate
- --context (optional): path to context package for cross-reference validation (defaults to
workspace/context-package.json)
Step 1: Discover files
Resolve the target argument to a list of .adoc files:
- If a single file: validate that file
- If a directory: glob for
**/*.adoc - If a glob pattern: expand it
Step 2: Run deterministic validators
Execute the validation script on all discovered files:
python3 "${CLAUDE_SKILL_DIR}/scripts/validate-artifacts.py" "${file1}" "${file2}" ...
This runs:
- Vale: prose style compliance
- Asciidoctor: compilation check (can the file be built?)
- Lychee: link checking (are URLs valid?)
- YAML syntax: validate embedded YAML code blocks
Collect all findings from the script output.
Step 3: Extract embedded artifacts
For each AsciiDoc file, extract embedded technical artifacts:
- YAML blocks: Content within
[source,yaml]delimiters - CLI commands: Content within
[source,bash]or[source,terminal]delimiters - Configuration references: Attribute references like
{attribute-name} - API paths: URLs or paths in the format
/api/v1/... - CRD references: Kubernetes resource kinds and API versions
Step 4: Cross-reference validation (LLM)
If a context package is available, use LLM judgment to cross-reference extracted artifacts against the gathered context:
For each extracted artifact:
- YAML blocks: Compare against CRD schemas and config examples in context
- CLI commands: Verify flags and options against --help output or source code in context
- API paths: Check against API specs or route definitions in context
- CRD references: Verify kind names, API versions, and field names against type definitions
Ask the LLM:
- Does this artifact match the authoritative source in the context?
- Are there incorrect field names, wrong API versions, or invalid options?
- Is the example complete and would it work as shown?
Step 5: Structural validation
Check AsciiDoc structure requirements:
Source the AsciiDoc conventions helper (which internally sources scripts/load-env.sh for credentials and uses scripts/parse-product-config.py to resolve module prefixes):
source "${CLAUDE_SKILL_DIR}/scripts/asciidoc-conventions.sh"
for file in <files>; do
adoc_validate_structure "$file"
mod_type="$(adoc_module_type "$file")"
if [[ "$mod_type" == "unknown" ]]; then
# record structural finding: filename prefix does not map to a known module type
:
fi
done
Verify:
- Module ID present (
[id="..."]) - Content type attribute set (
:_mod-docs-content-type:) - Level-1 heading present
- Module type matches filename prefix (enforced via
adoc_module_typecheck)
Step 6: Compile findings
Merge all findings from Steps 2-5, deduplicating and normalizing:
{
"validated_at": "2026-04-14T10:40:00Z",
"files_validated": 5,
"findings": [
{
"file": "modules/serving/pages/con_model-serving.adoc",
"line": 42,
"severity": "high|medium|low",
"category": "vale|asciidoctor|lychee|yaml_syntax|cross_reference|structure",
"tool": "vale|asciidoctor|lychee|yaml_syntax|llm|structural",
"rule": "RedHat.Spelling",
"message": "Description of the issue",
"suggestion": "How to fix it"
}
],
"summary": {
"high": 0,
"medium": 3,
"low": 5,
"total": 8,
"tools_run": ["vale", "asciidoctor", "yaml_syntax"],
"tools_skipped": ["lychee"]
}
}
Step 7: Write findings
Write workspace/validation-findings.json with the compiled results.
Output
Primary: workspace/validation-findings.json
Report to caller: total findings by severity, which tools ran vs skipped.
Gotchas
- Vale, asciidoctor, and lychee are optional dependencies; if any are missing, that validator is silently skipped. Check
tools_skippedin the output to confirm which ran. - Cross-reference validation (Step 4) requires a context package; without it, only deterministic checks run and the results may miss technical inaccuracies.
- Link checking via lychee can be slow on files with many external URLs and may produce false positives for rate-limited sites.
Stop conditions
- Continue: Individual tool missing (warn and skip)
- Continue: Individual file fails to parse (record finding, continue)
- Halt: No files found matching the target argument
Related Skills
opendatahub-io/python-packaging-static-audit
development
VerifiedTrustedCommunity
Run hexora static analysis on a Python package repository to detect suspicious code patterns, then triage findings with deterministic rules and AI reasoning to produce a structured risk report section.
30SKILL.mdUpdated May 30, 2026
opendatahub-io/python-packaging-git-audit
development
VerifiedTrustedCommunity
Inspect recent git history of a Python package repository for suspicious commits touching supply-chain-sensitive files, then triage findings with AI reasoning to produce a structured risk report section.
30SKILL.mdUpdated May 30, 2026
opendatahub-io/python-packaging-binary-audit
development
VerifiedTrustedCommunity
Scan a Python package repository for compiled/binary files using Fromager-style detection and malcontent YARA analysis, then triage findings with deterministic rules and AI reasoning to produce a structured risk report section.
30SKILL.mdUpdated May 30, 2026
opendatahub-io/non-redhat-rpms
testing
VerifiedTrustedCommunity
Use this skill to identify non-Red Hat RPM packages installed in container images or on the local machine. For containers, pulls images across multiple architectures and release tags; for local scans, inspects the host directly. Extracts RPM signing metadata and reports packages not signed with the Red Hat GPG key as CSV output. Use when auditing compliance, checking supply-chain provenance, or scanning for third-party RPMs in RHOAI component images.
30SKILL.mdUpdated May 29, 2026