This issue serves to collect a list of known gaps in how API Security processes OpenAPI specs.