Malformed JSON causes silent failures in API integrations, deployment pipelines, and configuration loaders. A JSON formatter makes structure readable; a JSON validator tells you exactly where and why a document is broken.
Why JSON Validation Matters
JSON is strict. A single trailing comma, an unquoted key, or a mismatched bracket will cause every compliant parser to reject the entire document. Unlike HTML, there is no error-recovery mode—invalid JSON fails completely.
Skipping validation creates problems that surface far from the actual source of the error. A missing required field corrupts downstream data silently; a schema that drifts as an API evolves causes consumers to receive malformed payloads that trigger exceptions hundreds of lines from the original parse call. When multiple services consume the same JSON feed, one malformed document can propagate inconsistent state across all of them before any single service reports a clear error.
Common breakage points:
- Trailing commas after the last array or object element
- Single-quoted strings (JSON requires double quotes)
- Comments (JSON has no comment syntax)
NaN,Infinity, orundefinedvalues (not valid JSON primitives)- Control characters inside string values without proper escaping
Parsing and Validating JSON in Python
Python’s json module raises a json.JSONDecodeError with line and column information when it encounters invalid input.
import json
raw = '{"name": "Alice", "age": 30,}' # trailing comma — invalid
try:
data = json.loads(raw)
except json.JSONDecodeError as e:
print(f"Invalid JSON at line {e.lineno}, column {e.colno}: {e.msg}")
# Invalid JSON at line 1, column 30: Expecting property name enclosed in double quotes
For larger documents, pretty-print valid JSON to make its structure immediately readable:
import json
raw = '{"user":{"id":1,"name":"Alice","roles":["admin","editor"]}}'
parsed = json.loads(raw)
pretty = json.dumps(parsed, indent=2, sort_keys=True)
print(pretty)
Output:
{
"user": {
"id": 1,
"name": "Alice",
"roles": [
"admin",
"editor"
]
}
}
indent=2 adds standard 2-space indentation. sort_keys=True alphabetizes keys, which helps when diffing two JSON documents.
Validating JSON Against a Schema
Syntax validation tells you the document is parseable. Schema validation tells you whether the data matches the expected shape. Use jsonschema for this in Python:
from jsonschema import validate, ValidationError
schema = {
"type": "object",
"required": ["name", "email"],
"properties": {
"name": {"type": "string", "minLength": 1},
"email": {"type": "string", "format": "email"},
"age": {"type": "integer", "minimum": 0}
},
"additionalProperties": False
}
# Valid document
user = {"name": "Alice", "email": "alice@example.com", "age": 30}
validate(instance=user, schema=schema)
print("Valid")
# Invalid document — missing required field
try:
validate(instance={"name": "Bob"}, schema=schema)
except ValidationError as e:
print(e.message)
# 'email' is a required property
additionalProperties: False is worth enforcing in schemas for security-sensitive endpoints—it rejects unexpected fields that could indicate a client sending data it shouldn’t.
Validating JSON in JavaScript
In the browser or Node.js, JSON.parse() throws a SyntaxError on invalid input:
function safeParse(raw) {
try {
return { data: JSON.parse(raw), error: null };
} catch (err) {
return { data: null, error: err.message };
}
}
const result = safeParse('{"name": "Alice",}');
if (result.error) {
console.error("JSON parse error:", result.error);
// JSON parse error: Expected double-quoted property name in JSON at position 18
}
For schema validation in JavaScript, use Ajv, the most widely used JSON Schema validator:
import Ajv from "ajv";
const ajv = new Ajv();
const schema = {
type: "object",
required: ["name", "email"],
properties: {
name: { type: "string" },
email: { type: "string", format: "email" }
}
};
const validate = ajv.compile(schema);
const data = { name: "Alice", email: "not-an-email" };
const valid = validate(data);
if (!valid) {
console.log(validate.errors);
// [{ instancePath: '/email', message: 'must match format "email"' }]
}
JSON Formatting Best Practices
Consistent Indentation
Establish a single indentation standard across your project and enforce it via linting. Two spaces is the most common convention for JSON configuration files — package.json, tsconfig.json, and most ecosystem tooling all default to 2-space indentation. Four spaces is also acceptable but wastes horizontal space in deeply nested structures and is more common in backend configurations like Spring or Maven settings files. Tabs are appropriate only when every editor consuming the file is configured to render tabs, which is rare in shared codebases.
{
"database": {
"host": "localhost",
"port": 5432,
"name": "myapp_production"
}
}
Key Ordering Conventions
JSON objects are technically unordered, but consistent key ordering makes configuration files easier to review in pull requests. Common conventions:
- Alphabetical: good for machine-generated files
- Logical grouping: good for human-maintained config (e.g.,
hostandporttogether)
Pick one convention and enforce it with a formatter or pre-commit hook. Sorted keys also matter for correctness in hash-based workflows: {"a":1,"b":2} and {"b":2,"a":1} are semantically identical but byte-for-byte different, which breaks content-addressable caching and CI snapshot tests that compare checksums rather than parsed values. Canonicalizing key order before hashing eliminates this class of false cache miss.
Minification for Production
Minified JSON removes whitespace to reduce payload size. This matters for API responses served to many clients. Trailing commas must be stripped before minifying or sending over the wire — standard JSON.parse() throws a SyntaxError on trailing commas even if your source file uses JSON5 or JSONC syntax where they are permitted. The minification step is the correct place to enforce this: parse with a lenient parser, then re-serialize with a strict one.
import json
data = {"host": "localhost", "port": 5432}
# Minified — no spaces
minified = json.dumps(data, separators=(",", ":"))
print(minified) # {"host":"localhost","port":5432}
The separators=(",", ":") argument eliminates the default space after each comma and colon.
Debugging Common JSON Errors
Trailing Commas
JSON does not allow trailing commas after the last element in an array or object. This is the single most common error for developers coming from JavaScript (which allows trailing commas in object literals).
// Invalid JSON
{
"name": "Alice",
"roles": [
"admin",
"editor",
]
}
Fix: remove the comma after "editor".
Most formatters and validators report the exact line number. If your editor does not highlight trailing commas in JSON files, install a JSON language extension.
Unescaped Special Characters
Strings containing newlines, tabs, or quotation marks must use escape sequences:
| Character | Escape |
|---|---|
" | \" |
\ | \\ |
| Newline | \n |
| Tab | \t |
| Carriage return | \r |
{
"message": "Line one\nLine two",
"path": "C:\\Users\\Alice\\Documents",
"quote": "She said \"hello\""
}
Large Numbers and Precision Loss
JSON has no integer type distinct from floating-point. Parsers in some languages (including JavaScript) will lose precision for integers larger than 2^53 - 1.
const json = '{"id": 9007199254740993}';
const obj = JSON.parse(json);
console.log(obj.id); // 9007199254740992 — precision lost
console.log(obj.id === 9007199254740993); // false
The standard fix: represent large integer IDs as strings in your JSON schema.
{ "id": "9007199254740993" }
Comparing JSON Documents
Diffing two JSON responses is easier when both are formatted consistently. Sort keys and normalize whitespace before comparing:
import json
def normalize_json(raw: str) -> str:
"""Parse and re-serialize with sorted keys and consistent indentation."""
return json.dumps(json.loads(raw), indent=2, sort_keys=True)
response_a = '{"name":"Alice","id":1,"roles":["admin"]}'
response_b = '{"id":1,"roles":["admin"],"name":"Alice"}'
print(normalize_json(response_a) == normalize_json(response_b)) # True
This technique is particularly useful in tests that compare API response snapshots. Without normalization, two semantically identical JSON objects with different key ordering will fail a string comparison.
Structural comparison requires normalizing key order before diffing — tools that compare raw JSON strings produce false positives whenever key order differs between two semantically identical documents. In CI pipelines that store JSON snapshots, key-order normalization prevents noisy diffs from polluting pull request reviews. The practical fix is to canonicalize both documents — sort keys recursively, strip whitespace — before feeding them to a diff tool, so only genuine value changes appear in the output.
For deep structural comparison in Python:
import json
def json_diff(a: str, b: str) -> dict:
"""Returns keys that differ between two JSON objects."""
obj_a = json.loads(a)
obj_b = json.loads(b)
all_keys = set(obj_a) | set(obj_b)
return {k: (obj_a.get(k), obj_b.get(k)) for k in all_keys if obj_a.get(k) != obj_b.get(k)}
diff = json_diff('{"name":"Alice","age":30}', '{"name":"Alice","age":31}')
print(diff) # {'age': (30, 31)}
JSON5 and JSONC: Comments and Relaxed Syntax
Standard JSON intentionally omits comments. Two popular supersets address this for configuration files:
- JSON5 (
json5package in Python/Node.js): allows comments, trailing commas, unquoted keys, single-quoted strings, and multi-line strings - JSONC (JSON with Comments): the format used by
tsconfig.jsonand VS Code settings — allows//and/* */comments but is otherwise standard JSON
import json5 # pip install json5
config_with_comments = """
{
// Database connection settings
"host": "localhost", // local dev only
"port": 5432,
"name": "myapp",
}
"""
parsed = json5.loads(config_with_comments)
print(parsed) # {'host': 'localhost', 'port': 5432, 'name': 'myapp'}
Never use JSON5 or JSONC for API payloads—only standard JSON is universally supported. Use them only for human-maintained configuration files where comments add genuine value.
JSON5 and JSONC solve the comment problem for config files, not for wire protocols. You will find them in tsconfig.json, .eslintrc, .babelrc, and VS Code settings files — contexts where a human edits the file and comments serve as documentation. Never send JSON5 or JSONC over an API; strip to standard JSON first. Parsers like jsonc-parser (used by VS Code internally) handle both formats and are available as npm packages for tooling that needs to read these config files programmatically without losing comment data.
Integrating Validation Into CI/CD
Validate all JSON configuration files and API fixtures in your CI pipeline to catch errors before they reach production. Validate as early in the pipeline as possible — in a pre-commit hook for files that live in the repo, and as the first step of the CI job for JSON produced by build processes. Early failure keeps the feedback loop tight: a developer who breaks a JSON schema hears about it in seconds from a pre-commit hook rather than waiting for the full pipeline to run. Schema validation is cheap; catching a malformed event payload in production is not.
# Using Python's json module as a quick linter
python -m json.tool config/settings.json > /dev/null && echo "Valid" || echo "Invalid"
For projects with multiple JSON files:
# Validate all JSON files in the project
find . -name "*.json" -not -path "*/node_modules/*" \
-exec python -m json.tool {} > /dev/null \;
A pre-commit hook using pre-commit can enforce validation automatically:
# .pre-commit-config.yaml
repos:
- repo: https://github.com/pre-commit/pre-commit-hooks
rev: v4.5.0
hooks:
- id: check-json
JSON Formatting in Different Languages
Every language has at least one standard library method for JSON serialization, but they differ significantly in how they handle key naming, null values, and whitespace. Python’s json.dumps with indent and sort_keys produces consistent output suitable for snapshots and diffs. Go’s encoding/json uses struct tags to control field names — the json:"name,omitempty" tag pattern maps Go’s PascalCase field names to JSON’s camelCase and drops zero-value fields in one declaration. TypeScript’s Zod library validates the shape before you ever call JSON.parse, making the parse-then-validate pattern unnecessary and giving you a single source of truth for both runtime validation and static type inference.
Go
Go’s encoding/json package formats JSON with json.MarshalIndent:
import (
"encoding/json"
"fmt"
)
type User struct {
Name string `json:"name"`
Email string `json:"email"`
Age int `json:"age"`
}
user := User{Name: "Alice", Email: "alice@example.com", Age: 30}
data, err := json.MarshalIndent(user, "", " ")
if err != nil {
panic(err)
}
fmt.Println(string(data))
Go’s struct tags (json:"name") control the JSON field names. Setting json:"-" omits a field from serialization entirely.
TypeScript
TypeScript projects benefit from typed JSON parsing via Zod or similar:
import { z } from "zod";
const UserSchema = z.object({
name: z.string().min(1),
email: z.string().email(),
age: z.number().int().nonnegative().optional()
});
type User = z.infer<typeof UserSchema>;
const raw = JSON.parse('{"name":"Alice","email":"alice@example.com"}');
const result = UserSchema.safeParse(raw);
if (!result.success) {
console.error(result.error.format());
} else {
const user: User = result.data;
console.log(user.name); // Alice
}
Zod schema validation gives you both runtime type checking and TypeScript type inference from a single schema definition, eliminating the gap between your type definitions and your actual validation logic.
Handling Large JSON: Streaming Parsers
Standard JSON parsing loads the entire document into memory before you can access any of it. For small payloads — API responses, config files, typical REST responses — this is fine. For files in the tens of megabytes or beyond, full-load parsing becomes a bottleneck: memory spikes, garbage collection pressure increases, and on memory-constrained systems the process may crash.
Streaming parsers solve this by emitting events or yielding items as they read bytes from the source, without building a full in-memory tree. Python’s ijson library wraps the fast yajl C parser and exposes an iterator interface:
import ijson
with open("large_data.json", "rb") as f:
for item in ijson.items(f, "results.item"):
process(item) # called once per array element, not after loading all
The "results.item" prefix tells ijson to emit each element of the results array as a discrete Python object. Memory usage stays flat regardless of how large the file grows, because only one item is materialized at a time.
In Node.js, JSONStream provides equivalent functionality by wrapping the underlying stream into an object-mode readable that emits parsed items:
const fs = require('fs');
const JSONStream = require('JSONStream');
fs.createReadStream('large_data.json')
.pipe(JSONStream.parse('results.*'))
.on('data', item => process(item));
Use streaming parsers when: loading JSON files larger than 10 MB, processing NDJSON (newline-delimited JSON) log files, or consuming paginated API exports that concatenate many records into a single response.
Format and Validate Instantly with DevNook
The DevNook JSON Formatter and Validator formats, validates, and highlights errors in JSON directly in your browser. No data leaves your machine. Paste in raw JSON from an API response or configuration file and get immediate feedback on structure and validity.
For JSON that contains Base64-encoded binary fields, see the Base64 Encoding and Decoding guide. When debugging URLs with JSON payloads, the URL Encoding guide covers how to safely encode JSON strings in query parameters.
Consistent JSON formatting and schema validation eliminate an entire class of integration bugs. Adding a validator to your CI pipeline takes under ten minutes and prevents hard-to-debug errors from reaching production.