Skip to content

chore(deps): bump jsonschema from 0.30.0 to 0.40.0#685

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/cargo/jsonschema-0.40.0
Open

chore(deps): bump jsonschema from 0.30.0 to 0.40.0#685
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/cargo/jsonschema-0.40.0

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 26, 2026
edited
Loading

Bumps jsonschema from 0.30.0 to 0.40.0.

Release notes

Sourced from jsonschema's releases.

[Python] Release 0.40.0

Added

  • Custom keyword validators via the keywords parameter for extending JSON Schema with domain-specific validation rules.
  • HttpOptions for configuring HTTP client behavior (timeouts, TLS verification, custom CA certificates) when fetching external schemas.

[Rust] Release 0.40.0

Added

  • HttpOptions and ValidationOptions::with_http_options() for configuring HTTP client behavior (timeouts, TLS verification, custom CA certificates) when fetching external schemas.
  • CLI: --timeout, --connect-timeout, --insecure, and --cacert flags for HTTP configuration.

[Python] Release 0.39.0

Added

  • ValidationError.evaluation_path attribute for the dynamic path including $ref traversals.

Fixed

  • schemaLocation in evaluation output now excludes $ref/$dynamicRef/$recursiveRef per JSON Schema spec.

Performance

  • evaluate(): 4.5-30x faster on complex schemas, 12-89% faster overall.
  • Recursive schemas with oneOf/anyOf: ~4000x faster via memoization. #930

[Rust] Release 0.39.0

Added

  • ValidationError::evaluation_path() for the dynamic path including $ref traversals.

Changed

  • BREAKING: Simplified custom keyword API - Keyword::validate no longer receives path parameters, and ValidationError::custom only takes a message.

Fixed

  • schemaLocation in evaluation output now excludes $ref/$dynamicRef/$recursiveRef per JSON Schema spec.

Performance

  • evaluate(): 4.5-30x faster on complex schemas, 12-89% faster overall.
  • Recursive schemas with oneOf/anyOf: ~4000x faster via memoization. #930

[Python] Release 0.38.1

Fixed

  • multipleOf validation for integer values between 2^53 and i64::MAX.

[Rust] Release 0.38.1

... (truncated)

Changelog

Sourced from jsonschema's changelog.

[0.40.0] - 2026-01-18

Added

  • HttpOptions and ValidationOptions::with_http_options() for configuring HTTP client behavior (timeouts, TLS verification, custom CA certificates) when fetching external schemas.
  • CLI: --timeout, --connect-timeout, --insecure, and --cacert flags for HTTP configuration.

[0.39.0] - 2026-01-16

Added

  • ValidationError::evaluation_path() for the dynamic path including $ref traversals.

Changed

  • BREAKING: Simplified custom keyword API - Keyword::validate no longer receives path parameters, and ValidationError::custom only takes a message.

Fixed

  • schemaLocation in evaluation output now excludes $ref/$dynamicRef/$recursiveRef per JSON Schema spec.

Performance

  • evaluate(): 4.5-30x faster on complex schemas, 12-89% faster overall.
  • Recursive schemas with oneOf/anyOf: ~4000x faster via memoization. #930

[0.38.1] - 2025-12-25

Fixed

  • multipleOf validation for integer values between 2^53 and i64::MAX with arbitrary-precision feature.

[0.38.0] - 2025-12-24

Added

  • EmailOptions for configuring email format validation. #903

Fixed

  • Use-after-free in async $ref resolution when multiple refs target the same external URL with different fragments. #906
  • multipleOf validation for large u64 values beyond i64::MAX with arbitrary-precision feature.
  • Validator not being Send + Sync on WASM targets. #915

[0.37.4] - 2025-11-30

Fixed

  • Stack overflow during validation of schemas with circular $ref chains (e.g., a -> b -> a).
  • Local $ref resolution within fragment-extracted external resources. #892

... (truncated)

Commits
  • 70d9711 chore(rust): Release 0.40.0
  • 24c067d feat(python): Custom keywords
  • 9047c64 feat: HTTP configuration
  • 8bb9535 docs: Update README
  • f2c9b24 docs: Update benchmarks
  • 0281258 perf: Remove duplicated benchmarks
  • 8c6ab7f chore(python): Release 0.39.0
  • 68073a5 chore(rust): Release 0.39.0
  • 3f7f457 perf: Cache some validation results
  • 03979ce perf: Add benchmarks for recursive schemas
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot added dependencies Pull requests that update a dependency file rust Pull requests that update rust code labels Jan 26, 2026
@dependabot dependabot bot requested a review from gmpinder as a code owner January 26, 2026 08:44
@dependabot dependabot bot added dependencies Pull requests that update a dependency file rust Pull requests that update rust code labels Jan 26, 2026
@dependabot dependabot bot force-pushed the dependabot/cargo/jsonschema-0.40.0 branch 2 times, most recently from a3fed8b to 62a4549 Compare February 2, 2026 17:53
@dependabot
chore(deps): bump jsonschema from 0.30.0 to 0.40.0
314781f 
Bumps [jsonschema](https://github.com/Stranger6667/jsonschema) from 0.30.0 to 0.40.0.
- [Release notes](https://github.com/Stranger6667/jsonschema/releases)
- [Changelog](https://github.com/Stranger6667/jsonschema/blob/master/CHANGELOG.md)
- [Commits](Stranger6667/jsonschema@rust-v0.30.0...rust-v0.40.0)

---
updated-dependencies:
- dependency-name: jsonschema
  dependency-version: 0.40.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/cargo/jsonschema-0.40.0 branch from 62a4549 to 314781f Compare February 2, 2026 18:01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@gmpinder gmpinder Awaiting requested review from gmpinder gmpinder is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update rust code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants