A schema definition and validation library for TypeScript — faster than Zod in 14/15 benchmarks (up to 204× faster on invalid input), 3× smaller than Zod v4, and compatible with 50+ ecosystem tools via Standard Schema v1.
Define a schema once and get TypeScript type inference, runtime validation, object mapping (@cleverbrush/mapper), auto-generated React forms (@cleverbrush/react-form), and bidirectional JSON Schema conversion (@cleverbrush/schema-json) — all from the same immutable, fluent API.
The problem: In a typical TypeScript project, types and runtime validation are separate concerns. You define a User type in one file, then write Joi / Yup / Zod schemas (or manual if checks) in another. Over time these drift apart — the type says a field is required, but the validation allows it to be undefined. Tests pass, but production data breaks because the validation didn't match the type.
The solution: @cleverbrush/schema lets you define a schema once and derive both the TypeScript type (via InferType) and runtime validation from the same source. Because every method returns a new builder instance (immutability), you can safely compose and extend schemas without accidentally mutating shared definitions.
What makes it different from Zod / Yup / Joi:
- PropertyDescriptors — a runtime descriptor tree that every tool in the ecosystem can introspect. The
@cleverbrush/mapperuses it for type-safe property selectors. The@cleverbrush/react-formuses it to auto-generate form fields with correct validation. This makes the schema library a foundation for an entire ecosystem — not just a standalone validation tool. No other popular schema library exposes this level of runtime metadata. - Standard Schema v1 — the
['~standard']getter is implemented on every builder. That means your schema works as-is with tRPC, TanStack Form, React Hook Form, T3 Env, Hono, Elysia, next-safe-action, and every other Standard Schema consumer. - Extension system — add custom methods to any builder type (
string,number,date, …) viadefineExtension()+withExtensions(). Extensions are fully typed, chainable, composable, and appear inintrospect(). No other popular schema library offers a comparable type-safe plugin system. - Built-in extension pack — common validators like
email(),url(),uuid(),ip(),trim(),positive(),negative(),nonempty(),unique(), and more are included out of the box. The default import has them pre-applied; import from@cleverbrush/schema/coreto get bare builders without extensions. - 14 KB gzipped (full) — 3× smaller than Zod v4 — sub-path imports (
@cleverbrush/schema/string,/number,/object,/array) drop individual builders to ~4 KB. - First-class nullable support —
.nullable()and.notNullable()are native methods on every builder. The inferred type automatically includes or excludesnull, andintrospect()exposesisNullablefor runtime metadata. - JSDoc comment preservation — JSDoc comments on schema properties carry through to the inferred TypeScript type, so IDE tooltips and autocomplete descriptions come from the schema definition itself.
- Zero runtime dependencies.
| Feature | @cleverbrush/schema | Zod | Yup | Joi |
|---|---|---|---|---|
| TypeScript type inference | ✓ | ✓ | ~ | ✗ |
| Standard Schema v1 | ✓ | ✓ | ✗ | ✗ |
| PropertyDescriptors (runtime introspection) | ✓ | ✗ | ✗ | ✗ |
| Type-safe extension system | ✓ | ✗ | ✗ | ✗ |
| Built-in object mapper | ✓ | ✗ | ✗ | ✗ |
| Built-in form generation | ✓ | ✗ | ✗ | ✗ |
| Bidirectional JSON Schema | ✓ | ~ (output only) | ✗ | ✗ |
External schema interop (extern()) |
✓ | ✗ | ✗ | ✗ |
| JSDoc preservation | ✓ | ✗ | ✗ | ✗ |
| Immutable schemas | ✓ | ✓ | ✗ | ✗ |
| Zero dependencies | ✓ | ✓ | ✗ | ✗ |
| Sync + async validation | ✓ | ✓ | ✓ | ✓ |
| Per-property error inspection | ✓ | ~ | ~ | ~ |
| Default values | ✓ | ✓ | ✓ | ✓ |
| Bundle size (full, gzipped) | 14 KB | 41 KB (v4) | ~19 KB | ~26 KB |
npm install @cleverbrush/schemaimport {
object,
string,
number,
boolean,
InferType
} from '@cleverbrush/schema';
// 1. Define a schema with fluent constraints
const UserSchema = object({
name: string().nonempty('Name is required').minLength(2, 'Name must be at least 2 characters'),
email: string().email('Please enter a valid email'),
age: number().min(0, 'Age cannot be negative').max(150).positive(),
isActive: boolean()
});
// 2. TypeScript type is inferred automatically — no duplication!
type User = InferType<typeof UserSchema>;
// Equivalent to: { name: string; email: string; age: number; isActive: boolean }
// 3. Validate data at runtime — synchronous by default
const result = UserSchema.validate({
name: 'Alice',
email: 'alice@example.com',
age: 30,
isActive: true
});
// Or use validateAsync() when you have async validators/preprocessors
// const result = await UserSchema.validateAsync({ ... });
if (result.valid) {
console.log('Validated:', result.object); // typed as User
} else {
// For object schemas, prefer getErrorsFor() for per-property error inspection:
const nameErrors = result.getErrorsFor((p) => p.name);
console.log(nameErrors.isValid); // false
console.log(nameErrors.errors); // ['Name must be at least 2 characters']
// result.errors on object schemas is deprecated — use getErrorsFor() instead
console.log('Errors:', result.errors);
// Array of { message: string }
}Type inference works in plain JavaScript too, using JSDoc:
/**
* @type {import('@cleverbrush/schema').InferType<typeof UserSchema>}
*/
const user = {
// type is inferred as { name: string; email: string; age: number; isActive: boolean }
};The following builder functions are available:
| Function | Description | Key Methods |
|---|---|---|
any() |
Any value. Similar to TypeScript's any type. |
.optional(), .nullable(), .notNullable(), .default(value), .addValidator(fn) |
string() |
String value with constraints. | .minLength(n), .maxLength(n), .matches(re), .email(), .url(), .uuid(), .ip(), .trim(), .toLowerCase(), .nonempty(), .oneOf(...values), .nullable(), .notNullable(), .default(value) |
number() |
Numeric value with constraints. | .min(n), .max(n), .integer(), .positive(), .negative(), .finite(), .multipleOf(n), .oneOf(...values), .nullable(), .notNullable(), .default(value) |
boolean() |
Boolean value. | .optional(), .nullable(), .notNullable(), .default(value) |
date() |
JavaScript Date instance. |
.optional(), .nullable(), .notNullable(), .default(value) |
func() |
Function value. | .optional(), .nullable(), .notNullable(), .default(value) |
nul() |
Exactly null. Useful in nullable unions. |
.optional(), .default(value) |
object(props) |
Object with typed properties. Supports nesting. | .validate(data), .addProps({...}), .optional(), .nullable(), .notNullable(), .default(value) |
array() |
Array with optional element schema (via .of()). |
.minLength(n), .maxLength(n), .of(schema), .nonempty(), .unique(), .nullable(), .notNullable(), .default(value) |
tuple([...schemas]) |
Fixed-length array with per-position types. Each index validated against its own schema — mirrors TypeScript tuple types. | .rest(schema), .optional(), .nullable(), .notNullable(), .default(value) |
record(keySchema, valSchema) |
Object with dynamic string keys. Every key must satisfy keySchema (a string schema) and every value must satisfy valSchema — mirrors TypeScript's Record<K, V>. |
.optional(), .nullable(), .notNullable(), .default(value), .addValidator(fn) |
union(schema) |
Union of schemas — e.g. string | number. |
.or(schema), .validate(data), .optional(), .nullable(), .notNullable(), .default(value) |
enumOf(...values) |
String enum — sugar for string().oneOf(...). |
.optional(), .nullable(), .notNullable(), .default(value) |
lazy(getter) |
Recursive/self-referential schema. The getter is called once and its result is cached. Enables tree structures, linked lists, and other recursive types. | .resolve(), .optional(), .addValidator(fn), .default(value) |
All schema builders are immutable. Every method call returns a new schema builder instance, so existing schemas are never modified:
const base = string().minLength(1);
const strict = base.maxLength(50); // new instance — base is unchanged
const loose = base.optional(); // another new instance
// base still only has minLength(1)
// strict has minLength(1) + maxLength(50)
// loose has minLength(1) + optionalThis is especially powerful when building a library of reusable schema fragments:
const Email = string().minLength(5).maxLength(255);
const Name = string().minLength(1).maxLength(100);
const CreateUser = object({ name: Name, email: Email });
const UpdateUser = object({ name: Name.optional(), email: Email.optional() });
// Both schemas share the same base constraints but differ in optionalitySchemas can be extended with additional properties, combined with unions, or nested inside arrays and objects:
import { object, string, number, array, union } from '@cleverbrush/schema';
// Extend an existing schema with new properties
const BaseEntity = object({
id: string(),
createdAt: string()
});
const UserEntity = BaseEntity.addProps({
name: string().minLength(2),
email: string().minLength(5)
});
// Nest objects inside arrays
const TeamSchema = object({
name: string().minLength(1),
members: array().of(UserEntity).minLength(1).maxLength(50)
});
// Union types
const IdOrEmail = union(string().minLength(1)).or(
string().matches(/^[^@]+@[^@]+$/)
);Use record(keySchema, valueSchema) to validate objects with dynamic string keys — lookup tables, i18n bundles, caches, or any Record<string, V> shape. Unlike object(), which requires a fixed set of known property names, record() validates objects whose keys are not known at schema-definition time.
Both the key and the value schema are enforced at runtime, and the inferred TypeScript type mirrors Record<K, V>.
import { record, string, number, object, InferType } from '@cleverbrush/schema';
// ── Basic: string keys → number values ──────────────────────────────────────
const scores = record(string(), number().min(0).max(100));
// InferType<typeof scores> → Record<string, number>
scores.validate({ alice: 95, bob: 87 }); // { valid: true }
scores.validate({ alice: 95, bob: -1 }); // { valid: false } — negative score
// ── Key constraint — only locale-style keys allowed ──────────────────────────
const i18n = record(
string().matches(/^[a-z]{2}(-[A-Z]{2})?$/),
string().nonempty()
);
i18n.validate({ en: 'Hello', 'fr-FR': 'Bonjour' }); // { valid: true }
i18n.validate({ '123': 'oops' }); // { valid: false } — bad key
// ── Nested: values are objects ───────────────────────────────────────────────
const userMap = record(
string(),
object({ name: string(), age: number() })
);
// InferType<typeof userMap> → Record<string, { name: string; age: number }>
// ── Optional with factory default ────────────────────────────────────────────
const cache = record(string(), number()).optional().default(() => ({}));
// ── getErrorsFor(key) — rich per-key result with descriptor ────────────────────
const schema = record(string(), number().min(0));
const result = schema.validate(
{ a: 1, b: -2, c: -3 },
{ doNotStopOnFirstError: true }
);
if (!result.valid) {
// Root-level errors (e.g. 'object expected')
const root = result.getErrorsFor();
console.log(root.isValid); // false if the container itself is invalid
// Per-key errors
const bResult = result.getErrorsFor('b');
console.log(bResult.isValid); // false
console.log(bResult.errors[0]); // 'the value must be >= 0'
console.log(bResult.seenValue); // -2
// Descriptor: read/write the entry on the original object
const descriptor = bResult.descriptor;
console.log(descriptor.key); // 'b'
descriptor.getSchema(); // → NumberSchemaBuilder
descriptor.getValue(result.object); // → { success: true, value: -2 }
descriptor.setValue(result.object, 0); // fixes the value in-place
}Use lazy(() => schema) to define recursive or self-referential schemas — tree structures, comment threads, nested menus, org charts, and any other type that refers to itself.
The getter function is called once on first validation, and the resolved schema is cached. Every subsequent call reuses the cache.
TypeScript limitation: TypeScript cannot infer recursive types automatically. You must provide an explicit type annotation on the variable holding the schema.
import {
object,
string,
number,
array,
lazy,
type SchemaBuilder
} from '@cleverbrush/schema';
// ── Tree structure ───────────────────────────────────────────────
type TreeNode = { value: number; children: TreeNode[] };
// Explicit annotation required — TypeScript can't infer recursive types
const treeNode: SchemaBuilder<TreeNode, true> = object({
value: number(),
children: array(lazy(() => treeNode))
});
treeNode.validate({
value: 1,
children: [
{ value: 2, children: [] },
{ value: 3, children: [{ value: 4, children: [] }] }
]
});
// { valid: true, object: { value: 1, children: [...] } }
// ── Comment thread ───────────────────────────────────────────────
type Comment = { text: string; replies: Comment[] };
const commentSchema: SchemaBuilder<Comment, true> = object({
text: string(),
replies: array(lazy(() => commentSchema))
});
// ── Navigation menu with optional sub-levels ─────────────────────
type MenuItem = { label: string; submenu?: MenuItem[] };
const menuItem: SchemaBuilder<MenuItem, true> = object({
label: string(),
submenu: array(lazy(() => menuItem)).optional()
});lazy() is fully compatible with .optional(), .addPreprocessor(), .addValidator(), and all other fluent methods. The wrapper's own preprocessors and validators run before delegating to the resolved schema.
// Preprocessors and validators work on the lazy wrapper itself
const schema = lazy(() => string())
.addPreprocessor((v) => (typeof v === 'number' ? String(v) : v))
.addValidator((v) => ({ valid: v !== 'forbidden' }));Some libraries ship a dedicated .discriminator() API for tagged unions. With @cleverbrush/schema you don't need one — union() combined with string-literal schemas gives you the same pattern naturally, with full type inference.
Use string('literal') for the discriminator field. Each branch of the union gets its own object schema whose discriminator can only match one exact value. TypeScript narrows the inferred type automatically:
import { object, string, number, union, type InferType } from '@cleverbrush/schema';
// Each variant has a literal "type" field acting as the discriminator
const Circle = object({
type: string('circle'),
radius: number().min(0)
});
const Rectangle = object({
type: string('rectangle'),
width: number().min(0),
height: number().min(0)
});
const Triangle = object({
type: string('triangle'),
base: number().min(0),
height: number().min(0)
});
// Combine with union() — no special .discriminator() call needed
const ShapeSchema = union(Circle).or(Rectangle).or(Triangle);
type Shape = InferType<typeof ShapeSchema>;
// Shape is automatically:
// | { type: 'circle'; radius: number }
// | { type: 'rectangle'; width: number; height: number }
// | { type: 'triangle'; base: number; height: number }
// Validation picks the matching branch by the literal field
const result = ShapeSchema.validate({ type: 'circle', radius: 5 });The @cleverbrush/scheduler library uses this exact pattern to validate job schedules. The every field acts as the discriminator, and each variant adds its own set of allowed properties:
import { object, string, number, array, date, union, type InferType } from '@cleverbrush/schema';
// Shared base with common schedule fields
const ScheduleBase = object({
interval: number().min(1).max(356),
hour: number().min(0).max(23).optional(),
minute: number().min(0).max(59).optional(),
startsOn: date().acceptJsonString().optional(),
endsOn: date().acceptJsonString().optional()
});
// Minute schedule — omit hour/minute (they don't apply)
const EveryMinute = ScheduleBase
.omit('hour').omit('minute')
.addProps({ every: string('minute') });
// Day schedule
const EveryDay = ScheduleBase
.addProps({ every: string('day') });
// Week schedule — adds dayOfWeek array
const EveryWeek = ScheduleBase.addProps({
every: string('week'),
dayOfWeek: array().of(number().min(1).max(7)).minLength(1).maxLength(7)
});
// Month schedule — adds day (number or 'last')
const EveryMonth = ScheduleBase.addProps({
every: string('month'),
day: union(string('last')).or(number().min(1).max(28))
});
// Combine all variants in a single union
const ScheduleSchema = union(EveryMinute)
.or(EveryDay)
.or(EveryWeek)
.or(EveryMonth);
type Schedule = InferType<typeof ScheduleSchema>;
// TypeScript infers a proper discriminated union on "every"Because each branch uses a string literal (string('minute'), string('day'), etc.) for the every field, TypeScript can narrow the full union based on that single property — exactly like zod's z.discriminatedUnion(), but without any extra API surface.
When you define an object schema, JSDoc comments on properties are preserved in the inferred TypeScript type. This means your IDE tooltips, hover documentation, and autocomplete descriptions all carry through from the schema definition — no need to maintain separate documentation:
const UserSchema = object({
/** Full display name of the user */
name: string().minLength(1).maxLength(200),
/** Contact email — must be unique across all users */
email: string().minLength(5),
/** Age in years. Must be a positive integer. */
age: number().min(0).max(150)
});
type User = InferType<typeof UserSchema>;
// Hovering over User.name in your IDE shows:
// "Full display name of the user"
// Hovering over User.email shows:
// "Contact email — must be unique across all users".deepPartial() recursively marks all properties at every nesting level as optional. It is the deep-object equivalent of a common DeepPartial<T> helper type in TypeScript, and is the recommended way to build PATCH API bodies or partial form state.
| Schema type | Effect |
|---|---|
object(…).deepPartial() |
All top-level and nested object properties become optional |
Nested object(…) inside an object |
Recursed — its properties are made optional too |
array(…), union(…), primitives |
The property itself is made optional; internals are not modified |
import { object, string, number, array, type InferType } from '@cleverbrush/schema';
const CreateUser = object({
name: string(),
address: object({
street: string(),
city: string()
})
});
const PatchUser = CreateUser.deepPartial();
type PatchUserPayload = InferType<typeof PatchUser>;
// {
// name?: string;
// address?: { street?: string; city?: string };
// }
// All three are valid:
PatchUser.validate({}); // { valid: true }
PatchUser.validate({ address: {} }); // { valid: true }
PatchUser.validate({ address: { city: 'Paris' } }); // { valid: true }Contrast with .partial(), which only affects the top level:
const ShallowPartial = CreateUser.partial();
// { name?: string; address?: { street: string; city: string } }
// ↑ still required inside
ShallowPartial.validate({ address: {} });
// { valid: false } — street and city are still requiredChains naturally with other modifiers:
const Schema = CreateUser.deepPartial().readonly();
type T = InferType<typeof Schema>;
// Readonly<{ name?: string; address?: { street?: string; city?: string } }>Note:
.deepPartial()recurses only into nestedobject()schemas. Array element schemas and union option schemas are not modified —array(object({…}))becomes an optional array but its element shape is unchanged. If you need deep-partialed array elements, apply.deepPartial()to the element schema before passing it toarray():array(InnerSchema.deepPartial()).optional()
Every schema builder has two validation methods:
validate(data)— synchronous. Returns aValidationResultdirectly. Throws if any preprocessor, validator, or error message provider returns a Promise.validateAsync(data)— asynchronous. Returns aPromise<ValidationResult>. Supports async preprocessors, validators, and error message providers.
Use validate() by default for the best performance. Switch to validateAsync() only when your schema includes async operations (e.g. database lookups, API calls in validators).
// Synchronous validation (default — use when all validators are sync)
const result = UserSchema.validate(someObject);
if (result.valid) {
console.log(result.object); // typed as InferType<typeof UserSchema>
} else {
// For object schemas, prefer getErrorsFor() for per-property error inspection (see below)
console.log(result.errors); // deprecated for object schemas — Array of { message: string }
}
// Async validation (use when validators/preprocessors are async)
const asyncResult = await UserSchema.validateAsync(someObject);By default, validation stops at the first error. Pass { doNotStopOnFirstError: true } to collect all errors at once:
const result = UserSchema.validate(
{ name: 'A', email: '', age: -5, isActive: true },
{ doNotStopOnFirstError: true }
);
console.log(result.errors);
// [
// { message: 'Name must be at least 2 characters' },
// { message: 'Please enter a valid email' },
// { message: 'Age cannot be negative' }
// ]Every constraint accepts an optional error message — either a plain string or a function:
const Name = string()
.minLength(2, 'Name is too short')
.maxLength(50, (seen) => `"${seen}" exceeds 50 characters`);
const Age = number()
.min(0, 'Age cannot be negative')
.max(150, 'Age seems unrealistic');Add custom synchronous or asynchronous validators to any schema:
const EmailSchema = string()
.minLength(5, 'Email is too short')
.addValidator(async (value) => {
if (value === 'taken@example.com') {
return {
valid: false,
errors: [{ message: 'This email is already registered' }]
};
}
return { valid: true };
});Object-level validators can validate cross-field constraints:
const SignupSchema = object({
password: string().minLength(8),
confirmPassword: string().minLength(8)
}).addValidator(async (value) => {
if (value.password !== value.confirmPassword) {
return {
valid: false,
errors: [{ message: 'Passwords do not match' }]
};
}
return { valid: true };
});ObjectSchemaBuilder.validate() returns an extended result with a getErrorsFor() method for inspecting errors on individual properties — perfect for showing inline form errors. This is the recommended way to inspect validation errors on object schemas and replaces the deprecated errors array on ObjectSchemaValidationResult:
const PersonSchema = object({
name: string().minLength(1),
address: object({
city: string(),
zip: number()
})
});
const result = PersonSchema.validate(person, {
doNotStopOnFirstError: true
});
if (!result.valid) {
// Get errors for a single property
const nameErrors = result.getErrorsFor((p) => p.name);
console.log(nameErrors.isValid); // false
console.log(nameErrors.errors); // ['must be at least 1 character']
console.log(nameErrors.seenValue); // the value that was validated
// Works with nested properties too
const cityErrors = result.getErrorsFor((p) => p.address.city);
console.log(cityErrors.errors);
}PropertyDescriptors are a runtime metadata tree attached to each property in an object schema. They provide type-safe access to property values, schema builders, and parent descriptors. This is what makes the entire Cleverbrush ecosystem work:
@cleverbrush/mapperuses them as selectors (like C# expression trees) to point at source and target properties type-safely.@cleverbrush/react-formuses them to bind form fields to schema properties and read their validation constraints automatically.
import {
object,
string,
number,
ObjectSchemaBuilder
} from '@cleverbrush/schema';
const UserSchema = object({
name: string().minLength(2),
address: object({
city: string(),
zip: number()
})
});
// Get the PropertyDescriptor tree
const tree = ObjectSchemaBuilder.getPropertiesFor(UserSchema);
// Use descriptors as selectors in mapper and react-form:
// mapper: .for((t) => t.name).from((s) => s.name)
// react-form: <Field selector={(t) => t.address.city} form={form} />Every schema builder supports .default(value). When the input is undefined, the default value is used instead — and the result is still validated against the schema's constraints.
import { string, number, array, object, InferType } from '@cleverbrush/schema';
// Static default
const Name = string().default('Anonymous');
Name.validate(undefined); // { valid: true, object: 'Anonymous' }
Name.validate('Alice'); // { valid: true, object: 'Alice' }
// Factory function — useful for mutable defaults
const Tags = array(string()).default(() => []);
// Works with .optional() — removes undefined from the type
const Port = number().optional().default(3000);
type Port = InferType<typeof Port>; // number (not number | undefined)Use a factory function for mutable values (arrays, objects) to avoid shared references:
const Config = object({
host: string().default('localhost'),
port: number().default(8080),
tags: array(string()).default(() => [])
});
type Config = InferType<typeof Config>;
// { host: string; port: number; tags: string[] }
// All fields are non-optional — defaults fill in missing valuesDefault values are exposed via .introspect():
const schema = string().default('hello');
const info = schema.introspect();
console.log(info.hasDefault); // true
console.log(info.defaultValue); // 'hello'Every schema builder supports .catch(value). When validation fails for any reason — wrong type, constraint violation, missing required value — the fallback is returned as a successful result instead of errors.
Unlike .default(), which only fires when the input is undefined, .catch() fires on any validation failure.
import { string, number, array, object } from '@cleverbrush/schema';
// Static fallback
const Name = string().catch('unknown');
Name.validate(42); // { valid: true, object: 'unknown' }
Name.validate(null); // { valid: true, object: 'unknown' }
Name.validate('Alice'); // { valid: true, object: 'Alice' }
// Constraint violation also triggers catch
const Age = number().min(0).catch(-1);
Age.validate(-5); // { valid: true, object: -1 }
// .parse() and .parseAsync() never throw when .catch() is set
Name.parse(42); // 'unknown' (no SchemaValidationError thrown)Use a factory function for mutable fallback values to avoid shared references:
const Tags = array(string()).catch(() => []);
const r1 = Tags.validate(null); // { valid: true, object: [] }
const r2 = Tags.validate(null); // { valid: true, object: [] }
// r1.object !== r2.object — separate array instances each timeThe fallback state is exposed via .introspect():
const schema = string().catch('unknown');
const info = schema.introspect();
console.log(info.hasCatch); // true
console.log(info.catchValue); // 'unknown'Every schema builder supports .readonly(). This is a type-level-only modifier — it marks the inferred TypeScript type as immutable, but does not alter validation behaviour or freeze the validated value at runtime.
| Builder | Effect on InferType<T> |
|---|---|
object(…).readonly() |
Readonly<{ … }> — all top-level properties become readonly |
array(…).readonly() |
ReadonlyArray<T> — no push, pop, etc. at the type level |
string().readonly() |
string (identity — primitives are already immutable) |
number().readonly() |
number (identity) |
boolean().readonly() |
boolean (identity) |
date().readonly() |
Readonly<Date> |
import { object, array, string, number, InferType } from '@cleverbrush/schema';
// Readonly object
const UserSchema = object({ name: string(), age: number() }).readonly();
type User = InferType<typeof UserSchema>;
// Readonly<{ name: string; age: number }>
// Readonly array
const TagsSchema = array(string()).readonly();
type Tags = InferType<typeof TagsSchema>;
// ReadonlyArray<string>
// Validation behaviour is unchanged
const result = UserSchema.validate({ name: 'Alice', age: 30 });
// { valid: true, object: { name: 'Alice', age: 30 } }Chains naturally with .optional() and .default():
const Schema = object({ id: number() }).readonly().optional();
type T = InferType<typeof Schema>;
// Readonly<{ id: number }> | undefinedThe isReadonly flag is exposed via .introspect() for tooling:
const schema = object({ name: string() }).readonly();
console.log(schema.introspect().isReadonly); // trueNote:
.readonly()is shallow — only top-level object properties or the array itself are marked readonly. For deeply nested immutability consider applying.readonly()at each level, or use aDeepReadonlyutility type post-validation.
Every schema builder supports .describe(text). This is a metadata-only modifier — it stores a human-readable description on the schema at runtime with no effect on validation.
const UserSchema = object({
name: string().describe("The user's full name"),
age: number().optional().describe('Age in years'),
}).describe('A user object');
// Read the description back at runtime
UserSchema.introspect().description; // 'A user object'The description is accessible via .introspect().description and chains naturally with all other modifiers:
string().describe('A name').optional().readonly()
// ^ InferType is string | undefined, isReadonly: true, description: 'A name'When using @cleverbrush/schema-json, descriptions round-trip through JSON Schema's standard description field:
import { toJsonSchema, fromJsonSchema } from '@cleverbrush/schema-json';
const spec = toJsonSchema(string().describe('A name'), { $schema: false });
// { type: 'string', description: 'A name' }
const schema = fromJsonSchema({ type: 'string', description: 'A name' } as const);
schema.introspect().description; // 'A name'The extension system lets you add custom methods to any schema builder type without modifying the core library. Define an extension once, apply it with withExtensions(), and every builder produced by the returned factories includes your new methods — fully typed and chainable.
Use defineExtension() to declare which builder types your extension targets and what methods it adds. Extension methods receive this bound to the builder instance and must return a builder to support fluent chaining:
import {
defineExtension,
withExtensions,
StringSchemaBuilder,
NumberSchemaBuilder,
DateSchemaBuilder
} from '@cleverbrush/schema';
// Email extension — adds .email() to string builders
const emailExt = defineExtension({
string: {
email(this: StringSchemaBuilder) {
return this.addValidator((val) => {
const valid = /^[^\s@]+@[^\s@]+\.[^\s@]+$/.test(val as string);
return {
valid,
errors: valid
? []
: [{ message: 'Invalid email address' }]
};
});
}
}
});
// Port extension — adds .port() to number builders
const portExt = defineExtension({
number: {
port(this: NumberSchemaBuilder) {
return this.isInteger().min(1).max(65535);
}
}
});
// Slug extension — adds .slug() to string builders
const slugExt = defineExtension({
string: {
slug(this: StringSchemaBuilder) {
return this.addValidator((val) => {
const valid = /^[a-z0-9]+(?:-[a-z0-9]+)*$/.test(val as string);
return {
valid,
errors: valid
? []
: [{ message: 'Must be a valid URL slug' }]
};
});
}
}
});Pass one or more extension descriptors to withExtensions() to get augmented factory functions. All original builder methods remain available and fully chainable alongside the new ones:
const s = withExtensions(emailExt, portExt, slugExt);
// .email() and .slug() are now available on string builders
const EmailSchema = s.string().email().minLength(5);
const SlugSchema = s.string().slug().minLength(1).maxLength(200);
// .port() is now available on number builders
const PortSchema = s.number().port();
// Use in object schemas — just like normal builders
const ServerConfig = s.object({
adminEmail: s.string().email(),
port: s.number().port(),
slug: s.string().slug(),
name: s.string().minLength(1)
});
// Validate as usual
const result = ServerConfig.validate({
adminEmail: 'admin@example.com',
port: 8080,
slug: 'my-server',
name: 'Production'
});A single extension can target multiple builder types:
const timestampsExt = defineExtension({
string: {
/** Marks this string property as an ISO timestamp */
isoTimestamp(this: StringSchemaBuilder) {
return this.addValidator((val) => {
const valid = !isNaN(Date.parse(val as string));
return {
valid,
errors: valid
? []
: [{ message: 'Must be a valid ISO timestamp' }]
};
});
}
},
date: {
/** Adds a validator that rejects dates in the future */
pastOnly(this: DateSchemaBuilder) {
return this.addValidator((val) => {
const valid = (val as Date) <= new Date();
return {
valid,
errors: valid ? [] : [{ message: 'Date must be in the past' }]
};
});
}
}
});Extension methods automatically record metadata that can be inspected at runtime via .introspect().extensions. The system auto-infers the metadata value based on the arguments passed to the extension method:
- Zero-arg methods → metadata value is
true - Single-arg methods → metadata value is the argument itself
- Multi-arg methods → metadata value is the arguments array
const s = withExtensions(emailExt, portExt);
// Zero-arg method — metadata is `true`
const emailSchema = s.string().email();
console.log(emailSchema.introspect().extensions.email); // true
// Single-arg method — metadata is the argument
const rangeExt = defineExtension({
number: {
percentage(this: NumberSchemaBuilder) {
return this.min(0).max(100);
}
}
});
const s2 = withExtensions(rangeExt);
const pctSchema = s2.number().percentage();
console.log(pctSchema.introspect().extensions.percentage); // true
// Multi-arg method — metadata is the arguments array
const rangeExt2 = defineExtension({
number: {
range(this: NumberSchemaBuilder, min: number, max: number) {
return this.min(min).max(max);
}
}
});
const s3 = withExtensions(rangeExt2);
const rangeSchema = s3.number().range(0, 100);
console.log(rangeSchema.introspect().extensions.range); // [0, 100]If you need structured metadata (e.g. an object with named fields rather than the raw arguments), call this.withExtension(key, value) explicitly inside the method. The auto-infer logic detects the existing key and skips automatic attachment:
const currencyExt = defineExtension({
number: {
currency(this: NumberSchemaBuilder, opts?: { maxDecimals?: number }) {
const maxDec = opts?.maxDecimals ?? 2;
// Explicit withExtension() call — auto-infer is skipped
return this
.withExtension('currency', { maxDecimals: maxDec })
.min(0)
.addValidator((val) => {
const decimals = (String(val).split('.')[1] ?? '').length;
const valid = decimals <= maxDec;
return {
valid,
errors: valid
? []
: [{ message: `Max ${maxDec} decimal places` }]
};
});
}
}
});
const s = withExtensions(currencyExt);
const priceSchema = s.number().currency({ maxDecimals: 4 });
console.log(priceSchema.introspect().extensions.currency);
// { maxDecimals: 4 } — structured metadata, not the raw argsMultiple extensions can be stacked — their methods are merged per builder type. A runtime error is thrown if two extensions define the same method name on the same builder type:
// All three extensions target StringSchemaBuilder
const s = withExtensions(emailExt, slugExt, trimmedExt);
// All methods are available and chainable
const schema = s.string().email().slug().trimmed().minLength(5);defineExtension() validates the configuration eagerly:
- Unknown builder type names throw immediately (e.g.
{ str: { ... } }instead of{ string: { ... } }) - Reserved method names cannot be overridden —
validate,introspect,optional,required,addValidator,addPreprocessor,withExtension,getExtension, etc. - Non-function values in the method record are rejected
// ❌ Throws: Unknown builder type "str"
defineExtension({ str: { foo() { return this; } } });
// ❌ Throws: Cannot override reserved method "validate"
defineExtension({ string: { validate() { return this; } } });| Function / Type | Description |
|---|---|
defineExtension(config) |
Defines an extension. config is an ExtensionConfig keyed by builder type name. Returns an ExtensionDescriptor. |
withExtensions(...exts) |
Accepts one or more ExtensionDescriptors. Returns an object with augmented factory functions (string, number, boolean, date, object, array, union, func, any). |
ExtensionConfig |
Type for the configuration object passed to defineExtension. Maps builder type names to method records. |
ExtensionDescriptor |
Branded type returned by defineExtension. Pass to withExtensions() to apply. |
The default import from @cleverbrush/schema includes a pre-applied extension pack with common validators. You get these methods automatically — no extra setup required:
| Method | Description | Metadata |
|---|---|---|
.email(errorMessage?) |
Validates email format | true |
.url(opts?, errorMessage?) |
Validates URL format. opts.protocols narrows allowed schemes (default: http, https) |
true or { protocols } |
.uuid(errorMessage?) |
Validates RFC 4122 UUID format (versions 1–5) | true |
.ip(opts?, errorMessage?) |
Validates IPv4 or IPv6 address. opts.version narrows to 'v4' or 'v6' |
true or { version } |
.trim() |
Preprocessor — trims whitespace before validation | true |
.toLowerCase() |
Preprocessor — lowercases value before validation | true |
.nonempty(errorMessage?) |
Rejects empty strings | true |
| Method | Description | Metadata |
|---|---|---|
.positive(errorMessage?) |
Value must be > 0 | true |
.negative(errorMessage?) |
Value must be < 0 | true |
.finite(errorMessage?) |
Value must be finite (not Infinity / -Infinity) |
true |
.multipleOf(n, errorMessage?) |
Value must be an exact multiple of n (float-safe) |
n |
| Method | Description | Metadata |
|---|---|---|
.nonempty(errorMessage?) |
Array must have at least one element | true |
.unique(keyFn?, errorMessage?) |
All elements must be unique. Optional keyFn extracts comparison key for objects |
true or keyFn |
.nullable() and .notNullable() are native methods available on every builder — no extension required.
| Method | Available on | Description |
|---|---|---|
.nullable() |
all builders | Marks the schema as nullable — null is accepted as a valid value. The inferred type changes from T to T | null. |
.notNullable() |
all builders | Removes the nullable mark — null is no longer accepted. The inferred type changes from T | null back to T. |
import { string, number, object, InferType } from '@cleverbrush/schema';
const name = string().nullable();
type Name = InferType<typeof name>; // string | null
// Works with any builder
const score = number().positive().nullable(); // number | null
// Chaining: validators before .nullable()
const email = string().email().nullable(); // string | null
// Optional + nullable: accepts string | null | undefined
const bio = string().optional().nullable();
// Nested inside objects
const User = object({
name: string().nonempty(),
bio: string().nullable(), // string | null
age: number().nullable(), // number | null
});
User.validate({ name: 'Alice', bio: null, age: null }); // valid
// Toggle back with .notNullable()
const strictName = string().nullable().notNullable();
type StrictName = InferType<typeof strictName>; // string (not string | null)
strictName.validate(null); // invalid
strictName.validate('Alice'); // valid
// Introspect at runtime
string().nullable().introspect().isNullable; // true
string().nullable().notNullable().introspect().isNullable; // false| Method | Available on | Description |
|---|---|---|
.oneOf(...values) |
string, number |
Constrains the value to one of the given literals and narrows the inferred type to the literal union. |
.oneOf(valuesArray, errorMessage?) |
string, number |
Array-form with an optional custom error message (string or factory). |
enumOf(...values) |
top-level factory | Sugar for string().oneOf(...). Mirrors Zod's z.enum(). |
enumOf(valuesArray, errorMessage?) |
top-level factory | Array-form with an optional custom error message. |
import { string, number, enumOf, InferType } from '@cleverbrush/schema';
// String enum — infers 'admin' | 'user' | 'guest'
const Role = enumOf('admin', 'user', 'guest');
type Role = InferType<typeof Role>;
Role.validate('admin'); // valid
Role.validate('other'); // invalid — "must be one of: admin, user, guest"
// Equivalent long-form
const Role2 = string().oneOf('admin', 'user', 'guest');
// Number enum — infers 1 | 2 | 3
const Priority = number().oneOf(1, 2, 3);
type Priority = InferType<typeof Priority>;
// Chains with nullable / optional
const OptionalRole = enumOf('admin', 'user').nullable(); // 'admin' | 'user' | null
// Runtime access to allowed values via introspect
Role.introspect().extensions?.oneOf; // ['admin', 'user', 'guest'].oneOf() accepts a custom error message via the array form, where the allowed values are passed as an array and the error message is the second argument:
import { string, number, enumOf } from '@cleverbrush/schema';
// String — array form with custom string error message
const role = string().oneOf(['admin', 'user', 'guest'], 'Invalid role');
role.validate('other'); // invalid — "Invalid role"
// String — array form with factory function
const role2 = string().oneOf(
['admin', 'user'],
(val) => `"${val}" is not a valid role`
);
// enumOf — array form with custom error message
const Role = enumOf(['admin', 'user', 'guest'], 'Invalid role');
// Number — trailing error message (unambiguous since values are numbers)
const priority = number().oneOf(1, 2, 3, 'Priority must be 1, 2, or 3');
priority.validate(99); // invalid — "Priority must be 1, 2, or 3"
// Number — array form
const priority2 = number().oneOf([1, 2, 3], 'Invalid priority');
// Number — factory function
const priority3 = number().oneOf(
1, 2, 3,
(val) => `${val} is not a valid priority`
);Note on string
.oneOf()error messages: Because.oneOf()accepts a variadic list of string values, a trailing string argument is treated as another allowed value (not an error message). To provide a string error message for a string enum, use the array form —string().oneOf(['a', 'b'], 'error message'). A trailing function is always unambiguously treated as an error message factory in the rest-params form.
All validator extensions accept an optional error message as the last parameter — either a string or a function (matching the same ValidationErrorMessageProvider pattern used by built-in constraints like .minLength()):
import { string, number, array } from '@cleverbrush/schema';
// String error messages
const email = string().email('Please enter a valid email');
const age = number().positive('Age must be positive');
const tags = array().of(string()).nonempty('At least one tag required');
// Function error messages — receive the invalid value
const name = string().nonempty((val) => `"${val}" is not allowed`);
const score = number().multipleOf(5, (val) => `${val} is not a multiple of 5`);If you need bare builders without the built-in extensions (e.g. to apply only your own custom extensions), import from the /core sub-path:
// Bare builders — no built-in extensions
import { string, number, array, withExtensions } from '@cleverbrush/schema/core';
// Apply only your own extensions
const s = withExtensions(myCustomExtension);The default import (@cleverbrush/schema) re-exports everything from /core and overrides the nine factory functions (string, number, boolean, date, object, array, union, func, any) with pre-extended versions. The extension descriptors themselves are also exported (stringExtensions, numberExtensions, arrayExtensions, nullableExtension) so you can compose them with your own.
@cleverbrush/schema is the foundation of a three-library ecosystem:
@cleverbrush/schema → Define once
↓ ↓ ↓
Validate data Map between schemas Render React forms
↓ ↓ ↓
.validate() @cleverbrush/mapper @cleverbrush/react-form
Define a schema once and use it for runtime validation, object mapping between different shapes, and type-safe React forms — all from a single source of truth.
Builder functions: any, lazy, string, number, boolean, func, object, date, array, union
Builder classes (for extending): SchemaBuilder, AnySchemaBuilder, ArraySchemaBuilder, BooleanSchemaBuilder, DateSchemaBuilder, FunctionSchemaBuilder, LazySchemaBuilder, NumberSchemaBuilder, ObjectSchemaBuilder, StringSchemaBuilder, UnionSchemaBuilder
Extension system: defineExtension, withExtensions, stringExtensions, numberExtensions, arrayExtensions, nullableExtension
Sub-path exports: @cleverbrush/schema/core — bare builders without built-in extensions
Types: InferType, ValidationResult, ValidationError, MakeOptional, SchemaPropertySelector, PropertyDescriptor, PropertyDescriptorTree, ExtensionConfig, ExtensionDescriptor
See API documentation for the full reference.
Benchmarked against Zod v4 with Vitest bench. Run the benchmarks yourself from the repo root: npm run bench.
| Benchmark | @cleverbrush/schema | Zod | Ratio |
|---|---|---|---|
| Array 100 objects — valid | 35,228 ops/s | 13,277 ops/s | 2.65× faster |
| Array 100 objects — invalid | 899,329 ops/s | 4,396 ops/s | 204× faster |
| Complex order — valid | 198,988 ops/s | 136,090 ops/s | 1.46× faster |
| Complex order — invalid | 884,706 ops/s | 26,106 ops/s | 33.9× faster |
| Flat object — valid | 1,001,194 ops/s | 840,725 ops/s | 1.19× faster |
| Flat object — invalid | 2,653,630 ops/s | 176,222 ops/s | 15.1× faster |
| Nested object — valid | 690,556 ops/s | 368,893 ops/s | 1.87× faster |
| Nested object — invalid | 2,739,319 ops/s | 87,245 ops/s | 31.4× faster |
| String — valid | 5,348,564 ops/s | 3,533,945 ops/s | 1.51× faster |
| String — invalid | 5,749,087 ops/s | 482,961 ops/s | 11.9× faster |
| Number — valid | 7,911,266 ops/s | 4,806,511 ops/s | 1.65× faster |
| Number — invalid | 5,387,475 ops/s | 637,513 ops/s | 8.45× faster |
| Union first branch | 1,925,508 ops/s | 1,529,547 ops/s | 1.26× faster |
| Union last branch | 676,107 ops/s | 732,682 ops/s | 0.92× |
| Union no match — invalid | 5,873,118 ops/s | 385,453 ops/s | 15.2× faster |
The large gains on invalid data come from the early-exit optimization: validation stops at the first failing constraint in each field and skips the rest of the object. For APIs and form handlers where invalid submissions are common, this translates directly to measurable throughput improvements.
Already using Zod, Valibot, or ArkType? The extern() factory wraps any Standard Schema v1 compatible schema into a @cleverbrush/schema builder — so you can mix external schemas with native ones inside an object() without rewriting anything.
import { z } from 'zod';
import { object, number, extern, InferType } from '@cleverbrush/schema';
// Existing Zod schema — keep as-is
const ZodAddress = z.object({
street: z.string().min(1),
city: z.string(),
zip: z.string().length(5),
});
// Compose with @cleverbrush/schema
const OrderSchema = object({
address: extern(ZodAddress),
totalCents: number().min(1),
});
// Type is inferred from *both* libraries:
type Order = InferType<typeof OrderSchema>;
// { address: { street: string; city: string; zip: string }; totalCents: number }
const result = OrderSchema.validate({
address: { street: '5th Ave', city: 'NYC', zip: '10001' },
totalCents: 4999,
});
if (!result.valid) {
// Navigate into the extern property — no type annotation needed
const zipErrors = result.getErrorsFor(t => t.address.zip);
console.log(zipErrors.errors);
}Key points:
- One parameter:
extern(standardSchema)— types and property descriptors are derived automatically. - getErrorsFor() works through extern boundaries:
t => t.address.citynavigates into the Zod schema. - Validation is delegated to the external schema’s
['~standard'].validate()— @cleverbrush/schema never re-implements the external library’s validation logic. - Works with any library that implements Standard Schema v1 (Zod ≥ 3.24, Valibot ≥ 1.0, ArkType, etc.).
@cleverbrush/schema implements Standard Schema v1. Every builder exposes a ['~standard'] getter, which means schemas work as-is with any Standard Schema consumer — no adapters, no wrappers, no configuration:
import { object, string, number } from '@cleverbrush/schema';
const UserSchema = object({
name: string().nonempty(),
age: number().min(18),
});
// Works with tRPC, TanStack Form, React Hook Form, T3 Env, Hono, Elysia, …
const standardSchema = UserSchema['~standard'];Confirmed integrations: tRPC, TanStack Form, React Hook Form, T3 Env, Hono, Elysia, next-safe-action, and 50+ others listed on standardschema.dev.
- Linting: Biome — strict rules enforced on every PR via CI
- Type checking: TypeScript strict mode (
strictNullChecks,noImplicitAny, full coverage) - Unit tests: Vitest — runtime tests + type-level tests (
expectTypeOf) covering all builders, extensions, edge cases, and error paths - Type-level tests:
expectTypeOfassertions validate that inferred types are exactly correct, not just assignable - CI: Every pull request must pass lint + build + test before merge — see
.github/workflows/ci.yml
BSD-3-Clause