python-jsonschema
diff --git a/‎CHANGELOG.rst‎
Lines changed: 3 additions & 2 deletions b/‎CHANGELOG.rst‎
Lines changed: 3 additions & 2 deletions
diff --git a/‎src/check_jsonschema/builtin_schemas/vendor/bitbucket-pipelines.json‎
Lines changed: 1 addition & 1 deletion b/‎src/check_jsonschema/builtin_schemas/vendor/bitbucket-pipelines.json‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/check_jsonschema/builtin_schemas/vendor/buildkite.json‎
Lines changed: 7 additions & 2 deletions b/‎src/check_jsonschema/builtin_schemas/vendor/buildkite.json‎
Lines changed: 7 additions & 2 deletions
diff --git a/‎src/check_jsonschema/builtin_schemas/vendor/circle-ci.json‎
Lines changed: 252 additions & 223 deletions b/‎src/check_jsonschema/builtin_schemas/vendor/circle-ci.json‎
Lines changed: 252 additions & 223 deletions
diff --git a/‎src/check_jsonschema/builtin_schemas/vendor/dependabot.json‎
Lines changed: 115 additions & 113 deletions b/‎src/check_jsonschema/builtin_schemas/vendor/dependabot.json‎
Lines changed: 115 additions & 113 deletions
diff --git a/‎src/check_jsonschema/builtin_schemas/vendor/drone-ci.json‎
Lines changed: 6 additions & 6 deletions b/‎src/check_jsonschema/builtin_schemas/vendor/drone-ci.json‎
Lines changed: 6 additions & 6 deletions
diff --git a/‎src/check_jsonschema/builtin_schemas/vendor/github-actions.json‎
Lines changed: 1 addition & 1 deletion b/‎src/check_jsonschema/builtin_schemas/vendor/github-actions.json‎
Lines changed: 1 addition & 1 deletion
@@ -10,8 +10,9 @@ Unreleased
 
 .. vendor-insert-here
 
-- Update vendored schemas: bitbucket-pipelines, buildkite, circle-ci,
-  github-issue-forms, mergify, renovate (2026-04-05)
+- Update vendored schemas: bitbucket-pipelines, buildkite, circle-ci, dependabot,
+  drone-ci, github-actions, github-issue-forms, github-workflows, gitlab-ci, meltano,
+  mergify, readthedocs, renovate, taskfile, woodpecker-ci (2026-05-02)
 
 0.37.1
 ------
 
@@ -104,11 +104,13 @@
           "enum": [
             "*",
             "none",
+            "agent_incompatible",
             "agent_refused",
             "agent_stop",
             "cancel",
             "process_run_error",
-            "signature_rejected"
+            "signature_rejected",
+            "stack_error"
           ]
         }
       },
@@ -508,7 +510,10 @@
           "items": {
             "type": "string"
           },
-          "examples": [["**.go", "go.{mod,sum}"], ["app/**", "spec/**"]]
+          "examples": [
+            ["**.go", "go.{mod,sum}"],
+            ["app/**", "spec/**"]
+          ]
         },
         {
           "type": "object",
 
@@ -691,6 +691,7 @@
         "julia",
         "maven",
         "mix",
+        "nix",
         "npm",
         "nuget",
         "opentofu",
@@ -743,6 +744,10 @@
               },
               "dependency-type": {
                 "$ref": "#/definitions/dependency-type"
+              },
+              "update-types": {
+                "$ref": "#/definitions/update-types",
+                "description": "Use to allow specific types of updates. You can combine this with 'dependency-name: \"*\"' to allow particular update-types for all dependencies."
               }
             },
             "anyOf": [
@@ -860,7 +865,7 @@
         "directory": {
           "description": "Location of package manifests",
           "type": "string",
-          "default": "/"
+          "examples": ["/", "/ecosystem"]
         },
         "exclude-paths": {
           "description": "List of file paths to exclude from dependency updates",
@@ -1182,119 +1187,116 @@
     "registry": {
       "type": "object",
       "description": "The top-level registries key is optional. It allows you to specify authentication details that Dependabot can use to access private package registries.",
-      "additionalProperties": false,
-      "patternProperties": {
-        ".+": {
-          "type": "object",
-          "additionalProperties": false,
-          "properties": {
-            "type": {
-              "description": "Identifies the type of registry.",
-              "enum": [
-                "cargo-registry",
-                "composer-repository",
-                "docker-registry",
-                "git",
-                "goproxy-server",
-                "hex-organization",
-                "hex-repository",
-                "helm-registry",
-                "maven-repository",
-                "npm-registry",
-                "nuget-feed",
-                "pub-repository",
-                "python-index",
-                "rubygems-server",
-                "terraform-registry"
-              ]
-            },
-            "url": {
-              "description": "The URL to use to access the dependencies in this registry. The protocol is optional. If not specified, 'https://' is assumed. Dependabot adds or ignores trailing slashes as required.",
-              "type": "string"
-            },
-            "username": {
-              "description": "The username that Dependabot uses to access the registry.",
-              "type": "string"
-            },
-            "password": {
-              "description": "A reference to a Dependabot secret containing the password for the specified user.",
-              "type": "string"
-            },
-            "key": {
-              "description": "A reference to a Dependabot secret containing an access key for this registry.",
-              "type": "string"
-            },
-            "token": {
-              "description": "A reference to a Dependabot secret containing an access token for this registry.",
-              "type": "string"
-            },
-            "replaces-base": {
-              "description": "For registries with type: python-index, if the boolean value is true, pip resolves dependencies by using the specified URL rather than the base URL of the Python Package Index (by default https://pypi.org/simple).",
-              "type": "boolean"
-            },
-            "organization": {
-              "description": "",
-              "type": "string"
-            },
-            "repo": {
-              "description": "",
-              "type": "string"
-            },
-            "auth-key": {
-              "description": "",
-              "type": "string"
-            },
-            "public-key-fingerprint": {
-              "description": "",
-              "type": "string"
-            },
-            "registry": {
-              "description": "The name of the cargo registry.",
-              "type": "string"
-            },
-            "tenant-id": {
-              "description": "The tenant ID for Azure OIDC authentication.",
-              "type": "string"
-            },
-            "client-id": {
-              "description": "The client ID for Azure OIDC authentication.",
-              "type": "string"
-            },
-            "jfrog-oidc-provider-name": {
-              "description": "The JFrog OIDC provider name for authentication.",
-              "type": "string"
-            },
-            "identity-mapping-name": {
-              "description": "The identity mapping name for JFrog OIDC authentication.",
-              "type": "string"
-            },
-            "audience": {
-              "description": "The audience for OIDC or AWS authentication.",
-              "type": "string"
-            },
-            "aws-region": {
-              "description": "The AWS region for AWS CodeArtifact authentication.",
-              "type": "string"
-            },
-            "account-id": {
-              "description": "The AWS account ID for AWS CodeArtifact authentication.",
-              "type": "string"
-            },
-            "role-name": {
-              "description": "The AWS role name for AWS CodeArtifact authentication.",
-              "type": "string"
-            },
-            "domain": {
-              "description": "The domain for AWS CodeArtifact authentication.",
-              "type": "string"
-            },
-            "domain-owner": {
-              "description": "The domain owner for AWS CodeArtifact authentication.",
-              "type": "string"
-            }
+      "additionalProperties": {
+        "type": "object",
+        "additionalProperties": false,
+        "properties": {
+          "type": {
+            "description": "Identifies the type of registry.",
+            "enum": [
+              "cargo-registry",
+              "composer-repository",
+              "docker-registry",
+              "git",
+              "goproxy-server",
+              "hex-organization",
+              "hex-repository",
+              "helm-registry",
+              "maven-repository",
+              "npm-registry",
+              "nuget-feed",
+              "pub-repository",
+              "python-index",
+              "rubygems-server",
+              "terraform-registry"
+            ]
           },
-          "required": ["type", "url"]
-        }
+          "url": {
+            "description": "The URL to use to access the dependencies in this registry. The protocol is optional. If not specified, 'https://' is assumed. Dependabot adds or ignores trailing slashes as required.",
+            "type": "string"
+          },
+          "username": {
+            "description": "The username that Dependabot uses to access the registry.",
+            "type": "string"
+          },
+          "password": {
+            "description": "A reference to a Dependabot secret containing the password for the specified user.",
+            "type": "string"
+          },
+          "key": {
+            "description": "A reference to a Dependabot secret containing an access key for this registry.",
+            "type": "string"
+          },
+          "token": {
+            "description": "A reference to a Dependabot secret containing an access token for this registry.",
+            "type": "string"
+          },
+          "replaces-base": {
+            "description": "For registries with type: python-index, if the boolean value is true, pip resolves dependencies by using the specified URL rather than the base URL of the Python Package Index (by default https://pypi.org/simple).",
+            "type": "boolean"
+          },
+          "organization": {
+            "description": "",
+            "type": "string"
+          },
+          "repo": {
+            "description": "",
+            "type": "string"
+          },
+          "auth-key": {
+            "description": "",
+            "type": "string"
+          },
+          "public-key-fingerprint": {
+            "description": "",
+            "type": "string"
+          },
+          "registry": {
+            "description": "The name of the cargo registry.",
+            "type": "string"
+          },
+          "tenant-id": {
+            "description": "The tenant ID for Azure OIDC authentication.",
+            "type": "string"
+          },
+          "client-id": {
+            "description": "The client ID for Azure OIDC authentication.",
+            "type": "string"
+          },
+          "jfrog-oidc-provider-name": {
+            "description": "The JFrog OIDC provider name for authentication.",
+            "type": "string"
+          },
+          "identity-mapping-name": {
+            "description": "The identity mapping name for JFrog OIDC authentication.",
+            "type": "string"
+          },
+          "audience": {
+            "description": "The audience for OIDC or AWS authentication.",
+            "type": "string"
+          },
+          "aws-region": {
+            "description": "The AWS region for AWS CodeArtifact authentication.",
+            "type": "string"
+          },
+          "account-id": {
+            "description": "The AWS account ID for AWS CodeArtifact authentication.",
+            "type": "string"
+          },
+          "role-name": {
+            "description": "The AWS role name for AWS CodeArtifact authentication.",
+            "type": "string"
+          },
+          "domain": {
+            "description": "The domain for AWS CodeArtifact authentication.",
+            "type": "string"
+          },
+          "domain-owner": {
+            "description": "The domain owner for AWS CodeArtifact authentication.",
+            "type": "string"
+          }
+        },
+        "required": ["type", "url"]
       },
       "minProperties": 1
     },
 
@@ -429,33 +429,33 @@
           "const": "kubernetes"
         },
         "metadata": {
-          "$ref": "https://json.schemastore.org/kubernetes-definitions.json#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"
+          "$ref": "kubernetes-definitions.json#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"
         },
         "node": {
           "$ref": "#/definitions/node"
         },
         "tolerations": {
           "description": "If specified, the pod's tolerations.",
           "items": {
-            "$ref": "https://json.schemastore.org/kubernetes-definitions.json#/definitions/io.k8s.api.core.v1.Toleration"
+            "$ref": "kubernetes-definitions.json#/definitions/io.k8s.api.core.v1.Toleration"
           },
           "type": "array"
         },
         "dns_config": {
-          "$ref": "https://json.schemastore.org/kubernetes-definitions.json#/definitions/io.k8s.api.core.v1.PodDNSConfig",
+          "$ref": "kubernetes-definitions.json#/definitions/io.k8s.api.core.v1.PodDNSConfig",
           "description": "Specifies the DNS parameters of a pod. Parameters specified here will be merged to the generated DNS configuration based on DNSPolicy."
         },
         "host_aliases": {
           "description": "HostAliases is an optional list of hosts and IPs that will be injected into the pod's hosts file if specified. This is only valid for non-hostNetwork pods.",
           "items": {
-            "$ref": "https://json.schemastore.org/kubernetes-definitions.json#/definitions/io.k8s.api.core.v1.HostAlias"
+            "$ref": "kubernetes-definitions.json#/definitions/io.k8s.api.core.v1.HostAlias"
           },
           "type": "array"
         },
         "node_selector": {
           "description": "A list of node selector terms.",
           "items": {
-            "$ref": "https://json.schemastore.org/kubernetes-definitions.json#/definitions/io.k8s.api.core.v1.NodeSelectorTerm"
+            "$ref": "kubernetes-definitions.json#/definitions/io.k8s.api.core.v1.NodeSelectorTerm"
           }
         },
         "steps": {
@@ -755,7 +755,7 @@
               "enum": ["always", "never", "if-not-exists"]
             },
             "resources": {
-              "$ref": "https://json.schemastore.org/kubernetes-definitions.json#/definitions/io.k8s.api.core.v1.ResourceRequirements"
+              "$ref": "kubernetes-definitions.json#/definitions/io.k8s.api.core.v1.ResourceRequirements"
             },
             "volumes": {
               "$ref": "#/definitions/steps_volumes"
 
@@ -123,7 +123,7 @@
               },
               "if": {
                 "$comment": "https://docs.github.com/en/actions/creating-actions/metadata-syntax-for-github-actions#runsstepsif",
-                "description": "You can use the if conditional to prevent a step from running unless a condition is met. You can use any supported context and expression to create a conditional.\nExpressions in an if conditional do not require the ${{ }} syntax. For more information, see https://help.github.com/en/articles/contexts-and-expression-syntax-for-github-actions.",
+                "description": "You can use the if conditional to prevent a step from running unless a condition is met. You can use any supported context and expression to create a conditional.\nExpressions in an if conditional do not require the ${{ }} syntax. However, you must always use the ${{ }} expression syntax or escape with '', \"\", or () when the expression starts with !, since ! is reserved notation in YAML format. For more information, see https://help.github.com/en/articles/contexts-and-expression-syntax-for-github-actions",
                 "type": "string"
               },
               "env": {