Skip to content

build(deps): update jsonschema requirement from 0.40 to 0.41#964

Open
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/cargo/jsonschema-0.41
Open

build(deps): update jsonschema requirement from 0.40 to 0.41#964
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/cargo/jsonschema-0.41

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 6, 2026

Updates the requirements on jsonschema to permit the latest version.

Release notes

Sourced from jsonschema's releases.

[Python] Release 0.41.0

Changed

  • Update pyo3 to 0.28.
  • Remove unused pythonize dependency.

Performance

  • Replace regex-based uri-template format validation with a hand-rolled RFC 6570 parser.
  • Specialize items keyword for simple type schemas ({"type": "string"}, {"type": "number"}, etc.) to eliminate dynamic dispatch overhead.
  • Precompute regex matches on known properties.
  • Faster unevaluatedProperties validation via O(1) property lookup and short-circuit oneOf evaluation.
  • Use HashMap for large set of properties.
  • Lower HashMap threshold from 40 to 15 properties for faster property lookups.
Changelog

Sourced from jsonschema's changelog.

[0.41.0] - 2026-02-04

Performance

  • Replace regex-based uri-template format validation with a hand-rolled RFC 6570 parser.
  • Specialize items keyword for simple type schemas ({"type": "string"}, {"type": "number"}, etc.) to eliminate dynamic dispatch overhead.
  • Precompute regex matches on known properties.
  • Faster unevaluatedProperties validation via O(1) property lookup and short-circuit oneOf evaluation.
  • Use HashMap for large set of properties.
  • Lower HashMap threshold from 40 to 15 properties for faster property lookups.

[0.40.2] - 2026-01-30

Changed

  • Exclude internal tracker field from ValidationError Debug output.
  • Switch HTTP client TLS crypto backend from aws-lc-rs to ring to simplify building from source on some Linux distributions. #957

Fixed

  • type: integer validation in Draft 4 now correctly accepts large integers outside the i64/u64 range when arbitrary-precision feature is enabled.

[0.40.1] - 2026-01-30

Changed

  • ValidationErrorKind::Custom now includes a keyword field containing the custom keyword name.

Performance

  • Faster validation via cost-based keyword ordering.
  • Faster patternProperties for simple prefix patterns (e.g., ^x-).

[0.40.0] - 2026-01-18

Added

  • HttpOptions and ValidationOptions::with_http_options() for configuring HTTP client behavior (timeouts, TLS verification, custom CA certificates) when fetching external schemas.
  • CLI: --timeout, --connect-timeout, --insecure, and --cacert flags for HTTP configuration.

[0.39.0] - 2026-01-16

Added

  • ValidationError::evaluation_path() for the dynamic path including $ref traversals.

Changed

  • BREAKING: Simplified custom keyword API - Keyword::validate no longer receives path parameters, and ValidationError::custom only takes a message.

... (truncated)

Commits
  • 008405d chore(rust): Release 0.41.0
  • e172a83 docs: Update benchmarks
  • 7bd9654 perf: Avoid re-building SchemaNode during recursive reference validation
  • 71c508b perf: Lower HashMap threshold from 40 to 15 properties for faster property lo...
  • 258cc95 perf: Replace regex-based uri-template format validation with a hand-rolled...
  • 1954c2c build(deps): bump crates/jsonschema-referencing/tests/suite
  • e142095 docs: Update benchmarks
  • 6e4cf58 perf: Fuse required with properties validator
  • a741634 perf: Fuse required with properties validator
  • 08f7b6b perf: Specialize items
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
build(deps): update jsonschema requirement from 0.40 to 0.41
5349d37 
Updates the requirements on [jsonschema](https://github.com/Stranger6667/jsonschema) to permit the latest version.
- [Release notes](https://github.com/Stranger6667/jsonschema/releases)
- [Changelog](https://github.com/Stranger6667/jsonschema/blob/master/CHANGELOG.md)
- [Commits](Stranger6667/jsonschema@rust-v0.40.0...rust-v0.41.0)

---
updated-dependencies:
- dependency-name: jsonschema
  dependency-version: 0.41.0
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

A2-insubstantial M5-dependencies

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants