Skip to content

chore(deps): bump schemathesis from 4.3.18 to 4.4.0 #111

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
aaltat merged 1 commit into from
Nov 6, 2025
Merged

chore(deps): bump schemathesis from 4.3.18 to 4.4.0 #111

aaltat merged 1 commit into from
Nov 6, 2025

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 5, 2025

Bumps schemathesis from 4.3.18 to 4.4.0.

Release notes

Sourced from schemathesis's releases.

Release 4.4.0

🚀 Added

  • Support for custom content types in multipart/form-data encoding via OpenAPI's encoding property. #697
  • Option to make warnings cause test failures via fail-on in warnings configuration. #2956
  • The generation.allow-extra-parameters config option to control whether Schemathesis generates unexpected query, header, or cookie parameters in negative testing (set to false to skip them entirely).
  • Response deserializer hook for non-JSON schema conformance checks (schemathesis.deserializer). #2934
  • Automatic dependency inference in Python stateful tests via schema.as_state_machine().
  • schemathesis.serializer.alias() to reuse built-in serializers (YAML, JSON, XML) for custom media types without reimplementing them. #2952
  • Warning when API responses have structured schemas but no registered deserializer, helping catch silently skipped validation.

🐛 Fixed

  • Curl commands with non-printable characters now use shell-aware escaping and display warnings for unknown shells. #2159
  • Internal error when the coverage phase generates data not serializable into media type registered via schemathesis.openapi.media_type.
  • Internal error when negative testing encounters schemas with bundled references.
  • Internal error when processing link definitions missing both operationRef and operationId.
  • CLI now starts displaying the current operation as soon as execution begins, preventing the blank progress window most noticeable during the coverage phase.

🔧 Changed

  • Custom media type strategies now support wildcard patterns (e.g., image/*) for all request body types, not just multipart encoding.
  • Improved the missing-links error message to point directly to the stateful testing guide.
  • Dependency inference now extracts fields from nested wrapper objects (result, data, response, payload).

📝 Documentation

  • Expanded the stateful testing guide with detailed link examples, troubleshooting tips, and CLI behaviour notes.
Changelog

Sourced from schemathesis's changelog.

4.4.0 - 2025-11-05

🚀 Added

  • Support for custom content types in multipart/form-data encoding via OpenAPI's encoding property. #697
  • Option to make warnings cause test failures via fail-on in warnings configuration. #2956
  • The generation.allow-extra-parameters config option to control whether Schemathesis generates unexpected query, header, or cookie parameters in negative testing (set to false to skip them entirely).
  • Response deserializer hook for non-JSON schema conformance checks (schemathesis.deserializer). #2934
  • Automatic dependency inference in Python stateful tests via schema.as_state_machine().
  • schemathesis.serializer.alias() to reuse built-in serializers (YAML, JSON, XML) for custom media types without reimplementing them. #2952
  • Warning when API responses have structured schemas but no registered deserializer, helping catch silently skipped validation.

🐛 Fixed

  • Curl commands with non-printable characters now use shell-aware escaping and display warnings for unknown shells. #2159
  • Internal error when the coverage phase generates data not serializable into media type registered via schemathesis.openapi.media_type.
  • Internal error when negative testing encounters schemas with bundled references.
  • Internal error when processing link definitions missing both operationRef and operationId.
  • CLI now starts displaying the current operation as soon as execution begins, preventing the blank progress window most noticeable during the coverage phase.

🔧 Changed

  • Custom media type strategies now support wildcard patterns (e.g., image/*) for all request body types, not just multipart encoding.
  • Improved the missing-links error message to point directly to the stateful testing guide.
  • Dependency inference now extracts fields from nested wrapper objects (result, data, response, payload).

📝 Documentation

  • Expanded the stateful testing guide with detailed link examples, troubleshooting tips, and CLI behaviour notes.
Commits
  • 645e2c0 chore: Release 4.4.0
  • 26d63b0 docs: Update README
  • 04dcdb9 test: Split stateful corpus tests
  • 600b3c2 fix: Internal error when checking for missing deserializers on responses with...
  • 33ac4e2 fix: Internal error when processing link definitions missing both `operationR...
  • eba447e feat: Warning when API responses have structured schemas but no registered de...
  • 0c0189f feat: A way to add aliases to existing serializers
  • 79bf6be fix(cli): Show tested API operation label immediately before test generation
  • ac23821 feat: Automatic dependency inference in Python stateful tests via `schema.as_...
  • 9913d6b test: add a helper method
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
chore(deps): bump schemathesis from 4.3.18 to 4.4.0
6b12057 
Bumps [schemathesis](https://github.com/schemathesis/schemathesis) from 4.3.18 to 4.4.0.
- [Release notes](https://github.com/schemathesis/schemathesis/releases)
- [Changelog](https://github.com/schemathesis/schemathesis/blob/master/CHANGELOG.md)
- [Commits](schemathesis/schemathesis@v4.3.18...v4.4.0)

---
updated-dependencies:
- dependency-name: schemathesis
  dependency-version: 4.4.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels Nov 5, 2025
@aaltat aaltat merged commit 92dac71 into main Nov 6, 2025
3 checks passed
@aaltat aaltat deleted the dependabot/uv/schemathesis-4.4.0 branch November 6, 2025 05:03
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@aaltat