I thought we already had this in the XML plug in however perhaps it was removed a while ago? If so do you know the reason why? Its a very useful generic rule eg to enforce a companies best practises for spring / camel xml dsl files eg where an optional attribute / element is expected or perhaps a given naming convention.
I also noticed on a google search coming to
XML static code analysis: Creating cookies without the “HttpOnly” flag is…
The description seems to be incorrect " Track breaches of an XPath rule"