diff --git a/jsonschema-validation.xml b/jsonschema-validation.xml index a8426471..25cab621 100644 --- a/jsonschema-validation.xml +++ b/jsonschema-validation.xml @@ -936,42 +936,21 @@ Due to security and performance concerns, as well as the open-ended nature of possible content types, implementations MUST NOT automatically decode, parse, - and/or validate the string contents by default. This additionally supports - the use case of embedded documents intended for processing by a different - consumer than that which processed the containing document. + and/or validate the string contents. Applications are expected to use these + annotations to invoke the appropriate libraries separately. All keywords in this section apply only to strings, and have no effect on other data types. - - Implementations MAY offer the ability to decode, parse, and/or validate - the string contents automatically. However, it MUST NOT perform these - operations by default, and MUST provide the validation result of each - string-encoded document separately from the enclosing document. This - process SHOULD be equivalent to fully evaluating the instance against - the original schema, followed by using the annotations to decode, parse, - and/or validate each string-encoded document. - - For now, the exact mechanism of performing and returning parsed - data and/or validation results from such an automatic decoding, parsing, - and validating feature is left unspecified. Should such a feature - prove popular, it may be specified more thoroughly in a future draft. - - - - See also the Security Considerations - sections for possible vulnerabilities introduced by automatically - processing the instance string according to these keywords. -
If the instance value is a string, this property defines that the string - SHOULD be interpreted as encoded binary data and decoded using the encoding - named by this property. + SHOULD be interpreted as encoded binary data and applications wishing + to decode it SHOULD do so using the encoding named by this property. @@ -1023,7 +1002,8 @@ This keyword MAY be used with any media type that can be mapped into - JSON Schema's data model. + JSON Schema's data model. Specifying such mappings is outside of the + scope of this specification. The value of this property MUST be a valid JSON schema. It SHOULD be ignored if