Skip to content

build(deps): bump jsonschema from 0.30.0 to 0.41.0 #573

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
dependabot wants to merge 1 commit into
base: main
Choose a base branch
from
Open

build(deps): bump jsonschema from 0.30.0 to 0.41.0 #573

dependabot wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 9, 2026

Bumps jsonschema from 0.30.0 to 0.41.0.

Release notes

Sourced from jsonschema's releases.

[Python] Release 0.41.0

Changed

  • Update pyo3 to 0.28.
  • Remove unused pythonize dependency.

Performance

  • Replace regex-based uri-template format validation with a hand-rolled RFC 6570 parser.
  • Specialize items keyword for simple type schemas ({"type": "string"}, {"type": "number"}, etc.) to eliminate dynamic dispatch overhead.
  • Precompute regex matches on known properties.
  • Faster unevaluatedProperties validation via O(1) property lookup and short-circuit oneOf evaluation.
  • Use HashMap for large set of properties.
  • Lower HashMap threshold from 40 to 15 properties for faster property lookups.

[Rust] Release 0.41.0

Performance

  • Replace regex-based uri-template format validation with a hand-rolled RFC 6570 parser.
  • Specialize items keyword for simple type schemas ({"type": "string"}, {"type": "number"}, etc.) to eliminate dynamic dispatch overhead.
  • Precompute regex matches on known properties.
  • Faster unevaluatedProperties validation via O(1) property lookup and short-circuit oneOf evaluation.
  • Use HashMap for large set of properties.
  • Lower HashMap threshold from 40 to 15 properties for faster property lookups.

[Python] Release 0.40.4

Added

  • Pre-built wheels for free-threaded Python (3.13t, 3.14t) on Linux, macOS, and Windows.

[Python] Release 0.40.3

Added

  • Pre-built wheels for musllinux (Alpine Linux) on x86_64 and aarch64.

[Python] Release 0.40.2

Changed

  • Switch HTTP client TLS crypto backend from aws-lc-rs to ring to fix import errors when building from source on some Linux distributions. #957

Fixed

  • Draft4Validator now correctly validates large Python integers outside the i64/u64 range (e.g., -9223372036854775809, 18446744073709551616) as valid for type: integer.

[Rust] Release 0.40.2

Changed

  • Exclude internal tracker field from ValidationError Debug output.
  • Switch HTTP client TLS crypto backend from aws-lc-rs to ring to simplify building from source on some Linux distributions. #957

... (truncated)

Changelog

Sourced from jsonschema's changelog.

[0.41.0] - 2026-02-04

Performance

  • Replace regex-based uri-template format validation with a hand-rolled RFC 6570 parser.
  • Specialize items keyword for simple type schemas ({"type": "string"}, {"type": "number"}, etc.) to eliminate dynamic dispatch overhead.
  • Precompute regex matches on known properties.
  • Faster unevaluatedProperties validation via O(1) property lookup and short-circuit oneOf evaluation.
  • Use HashMap for large set of properties.
  • Lower HashMap threshold from 40 to 15 properties for faster property lookups.

[0.40.2] - 2026-01-30

Changed

  • Exclude internal tracker field from ValidationError Debug output.
  • Switch HTTP client TLS crypto backend from aws-lc-rs to ring to simplify building from source on some Linux distributions. #957

Fixed

  • type: integer validation in Draft 4 now correctly accepts large integers outside the i64/u64 range when arbitrary-precision feature is enabled.

[0.40.1] - 2026-01-30

Changed

  • ValidationErrorKind::Custom now includes a keyword field containing the custom keyword name.

Performance

  • Faster validation via cost-based keyword ordering.
  • Faster patternProperties for simple prefix patterns (e.g., ^x-).

[0.40.0] - 2026-01-18

Added

  • HttpOptions and ValidationOptions::with_http_options() for configuring HTTP client behavior (timeouts, TLS verification, custom CA certificates) when fetching external schemas.
  • CLI: --timeout, --connect-timeout, --insecure, and --cacert flags for HTTP configuration.

[0.39.0] - 2026-01-16

Added

  • ValidationError::evaluation_path() for the dynamic path including $ref traversals.

Changed

  • BREAKING: Simplified custom keyword API - Keyword::validate no longer receives path parameters, and ValidationError::custom only takes a message.

... (truncated)

Commits
  • 008405d chore(rust): Release 0.41.0
  • e172a83 docs: Update benchmarks
  • 7bd9654 perf: Avoid re-building SchemaNode during recursive reference validation
  • 71c508b perf: Lower HashMap threshold from 40 to 15 properties for faster property lo...
  • 258cc95 perf: Replace regex-based uri-template format validation with a hand-rolled...
  • 1954c2c build(deps): bump crates/jsonschema-referencing/tests/suite
  • e142095 docs: Update benchmarks
  • 6e4cf58 perf: Fuse required with properties validator
  • a741634 perf: Fuse required with properties validator
  • 08f7b6b perf: Specialize items
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
build(deps): bump jsonschema from 0.30.0 to 0.41.0
7db5268 
Bumps [jsonschema](https://github.com/Stranger6667/jsonschema) from 0.30.0 to 0.41.0.
- [Release notes](https://github.com/Stranger6667/jsonschema/releases)
- [Changelog](https://github.com/Stranger6667/jsonschema/blob/master/CHANGELOG.md)
- [Commits](Stranger6667/jsonschema@rust-v0.30.0...rust-v0.41.0)

---
updated-dependencies:
- dependency-name: jsonschema
  dependency-version: 0.41.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file rust Pull requests that update Rust code labels Feb 9, 2026
@dependabot dependabot bot mentioned this pull request Feb 9, 2026
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update Rust code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants