Skip to content

[Dependabot]: Update xmlschema requirement from >=2.3.1 to >=4.3.2#86

Open
dependabot[bot] wants to merge 1 commit into
devfrom
dependabot/pip/dev/xmlschema-gte-4.3.2
Open

[Dependabot]: Update xmlschema requirement from >=2.3.1 to >=4.3.2#86
dependabot[bot] wants to merge 1 commit into
devfrom
dependabot/pip/dev/xmlschema-gte-4.3.2

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 6, 2026

Copy link
Copy Markdown

Updates the requirements on xmlschema to permit the latest version.

Release notes

Sourced from xmlschema's releases.

v4.3.2 (2026-06-30)

Changelog

Sourced from xmlschema's changelog.

v4.3.2_ (2026-06-30)

v4.3.1_ (2026-01-17)

  • normalize_url(): workaround for issue #467 (UNC paths with Python < 3.12.5)
  • META_SCHEMA and BASE_SCHEMA paths converted to 'file' URL scheme
  • Clean optional dependencies

v4.3.0_ (2026-01-03)

  • Add arguments validation for schemas and validation methods (by validation contexts)
  • Add custom XPath parser for find/findall/iterfind APIs on schemas for match singleton sequence also if position is a number greater than 1 in predicate expression (issue #468)
  • Improve build of XSD elements and groups, using a three-state built flag for components
  • Extend and fix memory tests (Python 3.14+ seems to consume more memory)
  • Drop support for Python 3.9 and add development support for Python 3.15

v4.2.0_ (2025-10-14)

  • Add arguments validation for schemas and validation methods (by validation contexts)
  • Add SchemaSettings dataclass for storing read-only settings for schema instances and for managing package default settings
  • Add block argument to XMLResource class (issue #464)
  • Add MAX_SCHEMA_SOURCES package limit (1000, applied to XsdGlobals global maps instances)
  • Add MAX_XML_ELEMENTS package limit (1,000,000, applied to non-lazy XMLResource instances)
  • Reduce MAX_XML_DEPTH limit to 1000 and apply it to all XMLResource instances
  • Fix for substitute match in case of unexpected child (issue #461)

v4.1.0_ (2025-06-05)

  • Add XPath selectors: ElementSelector and ElementPathSelectors
  • Add selector argument to XMLResource and iterparse filters
  • Fix element substitution (issue #452)
  • Restore v3.4.5 builder methods as helpers (issue #451)
  • Add overall_min_occurs and overall_max_occurs helpers to XsdElement (issue #449)
  • Extend error message for XML syntax errors (issue #448)
  • Fix query/fragment like for filenames (issue #447)

v4.0.1_ (2025-04-12)

  • Fix XSD identity update with xsi:type substitution (issue #446)

v4.0.0_ (2025-04-11)

  • Extend support of lxml.etree through iterparse optional argument

... (truncated)

Commits
  • 627c179 Merge PR #476 - Add Georgian language
  • b3bfc1d Bump bugfix release and update CI tests
  • de42603 Add contribution policy
  • 08e1c27 Fix for issues #474 and #475
  • c10df34 Fix for issue #473: use of 'fixed' with 'prohibited'
  • 8a4f3a1 Add test for issue #474
  • b1e2c5f Merge pull request #476 from EkaterinePapava/master
  • cfd594e po: Add Georgian language
  • 64b103f Add a test for meta-schema URLs and relax memory test for Python 3.14
  • 508d1a2 Update bugfix release information and clean deps of pyproject.toml
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Updates the requirements on [xmlschema](https://github.com/sissaschool/xmlschema) to permit the latest version.
- [Release notes](https://github.com/sissaschool/xmlschema/releases)
- [Changelog](https://github.com/sissaschool/xmlschema/blob/master/CHANGELOG.rst)
- [Commits](sissaschool/xmlschema@v2.3.1...v4.3.2)

---
updated-dependencies:
- dependency-name: xmlschema
  dependency-version: 4.3.2
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label Jul 6, 2026
@dependabot
dependabot Bot requested a review from Paebbels as a code owner July 6, 2026 21:32
@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label Jul 6, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file

Development

Successfully merging this pull request may close these issues.

0 participants