Skip to content

chore(deps): Bump jsonschema-rs from 0.41.0 to 0.42.2#50

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/uv/jsonschema-rs-0.42.2
Open

chore(deps): Bump jsonschema-rs from 0.41.0 to 0.42.2#50
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/uv/jsonschema-rs-0.42.2

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 6, 2026

Bumps jsonschema-rs from 0.41.0 to 0.42.2.

Release notes

Sourced from jsonschema-rs's releases.

[Python] Release 0.42.2

Fixed

  • SWAR digit parser accepted bytes :? (0x3A–0x3F) as valid digits during date, time, and date-time format validation, potentially allowing malformed values to pass.

Changed

  • Custom keyword validation exceptions are now chained to the resulting ValidationError via __cause__, preserving the original exception type and message.

Performance

  • Extend pattern prefix optimization to handle escaped slashes (^\/) and exact-match patterns (^\$ref$).
  • Specialize enum for cases when all variants are strings.

[Ruby] Release 0.42.2

Changed

  • Custom keyword validation exceptions are now chained to the resulting ValidationError via cause, preserving the original exception class and message.

Fixed

  • SWAR digit parser accepted bytes :? (0x3A–0x3F) as valid digits during date, time, and date-time format validation, potentially allowing malformed values to pass.

Performance

  • Extend pattern prefix optimization to handle escaped slashes (^\/) and exact-match patterns (^\$ref$).
  • Specialize enum for cases when all variants are strings.

[Rust] Release 0.42.2

Fixed

  • SWAR digit parser accepted bytes :? (0x3A–0x3F) as valid digits during date, time, and date-time format validation, potentially allowing malformed values to pass.

Performance

  • Extend pattern prefix optimization to handle escaped slashes (^\/) and exact-match patterns (^\$ref$).
  • Specialize enum for cases when all variants are strings.

[Python] Release 0.42.1

Performance

  • Reduce dynamic dispatch overhead for non-recursive $ref resolution.
  • Cache ECMA regex transformations during format: "regex" validation.

Packaging

  • Exclude rust-toolchain.toml from wheels. #1012

[Ruby] Release 0.42.1

Performance

... (truncated)

Changelog

Sourced from jsonschema-rs's changelog.

[0.42.2] - 2026-02-26

Fixed

  • SWAR digit parser accepted bytes :? (0x3A–0x3F) as valid digits during date, time, and date-time format validation, potentially allowing malformed values to pass.

Performance

  • Extend pattern prefix optimization to handle escaped slashes (^\/) and exact-match patterns (^\$ref$).
  • Specialize enum for cases when all variants are strings.

[0.42.1] - 2026-02-17

Performance

  • Reduce dynamic dispatch overhead for non-recursive $ref resolution.
  • Cache ECMA regex transformations during format: "regex" validation.

[0.42.0] - 2026-02-14

Added

  • JsonType::as_str method for zero-allocation type name access.
  • ValidationErrorKind::keyword is now public.
  • tls-ring feature flag to opt into using ring as the TLS crypto provider instead of the default aws-lc-rs. #997
  • CLI: Support YAML (.yaml/.yml) instance files in text output mode. #988

Changed

  • BREAKING: Default TLS crypto provider switched back to aws-lc-rs. Users who need ring can opt in via the tls-ring feature flag. This resolves potential conflicts with other libraries using aws-lc-rs. #997

Fixed

  • Panic when validating $ref targets that resolve to boolean schemas.

Performance

  • Cache formatted schema locations with OnceLock to avoid repeated formatting during evaluate().
Commits
  • c3aa71c chore(ruby): Release 0.42.2
  • f28bb25 chore(python): Release 0.42.2
  • eb099bb chore(rust): Release 0.42.2
  • 72eb953 build(deps): bump werkzeug from 3.1.5 to 3.1.6 in /crates/jsonschema-py
  • 0067a8c test: fix WASM32 tests
  • 99da804 chore(ruby): Preserve the original exception as cause in custom keywords
  • b3d3d87 build(deps): update strum requirement from 0.27.1 to 0.28.0
  • ea17eba build(deps): update serde-saphyr requirement from 0.0.19 to 0.0.20
  • 0da6f55 build(deps): bump crates/jsonschema/tests/suite
  • dd5e8a7 fix: Incorrectly parsing some ASCII bytes as digits in date, time, and `d...
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
chore(deps): Bump jsonschema-rs from 0.41.0 to 0.42.2
2847995 
Bumps [jsonschema-rs](https://github.com/Stranger6667/jsonschema) from 0.41.0 to 0.42.2.
- [Release notes](https://github.com/Stranger6667/jsonschema/releases)
- [Changelog](https://github.com/Stranger6667/jsonschema/blob/master/CHANGELOG.md)
- [Commits](Stranger6667/jsonschema@rust-v0.41.0...ruby-v0.42.2)

---
updated-dependencies:
- dependency-name: jsonschema-rs
  dependency-version: 0.42.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels Mar 6, 2026
@dependabot dependabot bot mentioned this pull request Mar 6, 2026
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants