hi, we're seeing this error intermittently, seemingly when the publish is called, the hash that gets created for the contract is invalid, though I believe we're not the ones hashing the json? Any thoughts on how to guard against this? Was advised it's intermittent and it is on the OAS file upload

status=400 {"title":"Validation errors","type":"<https://problems-registry.smartbear.com/validation-error>","status":400,"instance":"/","errors":[{"detail":"content could not be parsed as application/json","pointer":"#/contract/content"},{"detail":"content when Base64 decoded and parsed must be a hash","pointer":"#/contract/content"}]}

@Zachary Lysobey has left the channel

We're having trouble signing in to our pactflow instance. This is what I get even when I do a private mode window:

Hi people, we seem to have lost our PactFlow user (at least the details we have don’t work any more): https://sdx.pactflow.io/ un: connect.engineering@sedex.com Any ideas?

Hi folks! I've been following the ci-cd workshop, and for the life of me cannot get the damned webhook to work. Would anyone be able to provide some assistance? Keen to get past this step in prep for a team demo to showcase contract testing in action. Notes: • Attached is the webhook setup in APIHub • Link to my forked provider and forked consumer • The github personal access token is still listing as 'unused' and the "triggered webhooks" tab in ApiHub is empty - suggesting it's not getting that far in the process Huge thanks in advance!

@Matt (pactflow.io / pact-js / pact-go) different problem this time, I’ve got a 404 trying to record a pact to the following endpoint:

/pacticipants/saq-summary-etl/versions/4b4c8962c8f7243a28cdeda7cbcbf7b7d90ae41a/deployed-versions/environment/6433116c-b3cd-48ce-bd0d-ed2a12b844ee

- any ideas? The response is:

404 . {"error":"The requested document was not found on this server."}

Hi, I am setting up bidirectional contract testing with an external provider, and they ask me if there are any possibilities for them to receive a notification with the comparison results after they've uploaded their new OAS file. Naturally I thought it would be possible with a webhook. But I've just tried a simple example where I have set up a webhook, and upload a modified OAS file with breaking changes, and the webhook does not seem to trigger. Am I missing anything here?

Hello everyone! I'm just wondering if the webhook "Contract published that requires verification" should be triggered should cover initial contract publishing? I expected it should, but when I started testing, it was triggered only in case the existing contract was updated. When I choose "Contract published" option for webhook is is triggered successfully, but with option "Contract published that requires verification" - not.

Hi team!, I am trying to use Pactflow-ai to generate the consumer contract test from our openapi spec file but every time the getting the

ERROR: Server error: 500 Internal Server Error

, maybe can you help ? it is generating for happy path but failing 400, 404 etc

I'm getting an error in our pipelines this morning that is new. I can't see how it is caused by changes our end. Any changes made recently to pactflow? Our pactflow /matrix endpoint is returning 404 😞

FAILED integration_tests/pact/v3/test_can_i_merge.py::test_can_i_merge - RuntimeError: can-i-merge failed: Error retrieving matrix. PactBroker::Client::Hal::ErrorResponseReturned - Error making request to <https://xxx-xxx.pactflow.io/matrix> status=404 Not Found. The requested document was not found on this server.

Using pact-cli to run can-i-merge (unchanged):

docker run --rm pactfoundation/pact-cli:latest pact-broker can-i-merge --broker-base-url={pact_broker_base_url} --broker-token={pact_broker_token} --pacticipant a --pacticipant b

Hi we have implemented consumer driven contract testing in our company but in some cases we need to implement bi-directional testing And while implementing it we have run into a problem. When using the pactflow publish-provider-contract it expects the provider to self verify the open api specification, is there a way to skip it?, Our providers are .Net based and we generate the specification from the provider code, so we dont need to self verify anything, and our verification should be ok automattically. We have tried with --skip-verification-success option but it stil expects to upload the verification info, and it says that contract is not compatible with provider codebase. Thanks

Hi, we are implementing a bi-directional contract testing system and we use

can-i-deploy

in our CI/CD system to check the compatibility of our Provider with our Consumer contracts. We would like detailed information about the contract validation failure (i.e. what specific request properties don't match etc), but unfortunately it seems like the default response from

can-i-deploy

lacks that information and links to the

/contracts/bi-directional/provider/<provider>/version/<version>/consumer/<consumer>/version/<version>/cross-contract-verification-results

page in the pactflow ui. There is documentation that implies that this information can be retrieved programmatically via the pactflow API https://docs.pactflow.io/docs/bi-directional-contract-testing/compatibility-checks/#api-resources

crossContractVerificationResults

contains the information we want We have tried various ways to make requests to that url, but couldn't get it to work. We always receive

{"title":"404 Not Found","type":"<https://problems-registry.smartbear.com/not-found>","detail":"The requested document was not found on this server.","status":404}

How can we retrieve the contract verification results programmatically?

Hello, me again. I'm implementing webhooks now, and when testing some variables are not being populated.

{
  "target": {
    "ref_type": "branch",
    "type": "pipeline_ref_target",
    "ref_name": "${pactbroker.providerVersionBranch}",
    "selector": {
      "type": "custom",
      "pattern": "pi-verify-pacts"
    }
  },
  "variables": [
    {
      "key": "PACT_URL",
      "value": "${pactbroker.pactUrl}"
    },
    {
      "key": "PACT_PROVIDER_VERSION",
      "value": "${pactbroker.providerVersionNumber}"
    },
    {
      "key": "PACT_PROVIDER_BRANCH",
      "value": "${pactbroker.providerVersionBranch}"
    },
    {
      "key": "PACT_PROVIDER_NAME",
      "value": "${pactbroker.providerName}"
    },
    {
      "key": "PACT_CONSUMER_VERSION",
      "value": "${pactbroker.consumerVersionNumber}"
    },
    {
      "key": "PACT_CONSUMER_BRANCH",
      "value": "${pactbroker.consumerVersionBranch}"
    },
    {
      "key": "PACT_CONSUMER_NAME",
      "value": "${pactbroker.consumerName}"
    }
  ]
}

${pactbroker.providerVersionBranch}

and

${pactbroker.providerVersionNumber}

are resolving to an empty string, which causes the webhook to fail. For now I'll hope that this is just the "test webhook" functionality that's broken at the moment. I'll let you know if the problem persists.

Hey, When a webhook runs (specifically, the

Contract published that requires verification

webhook), what are the rules for determining the

pactbroker.pactUrl

that we use in the payload? If the webhook runs for two different provider versions (as shown in the screenshot), should that

pactbroker.pactUrl

be the same or different for the two invocations?

I think I posted in the wrong channel, So reposting here. Hi team! 👋 I'm working on a provider verification setup and have a question about stateHandlers. Current Setup: In my pact.setup.js, I'm using stateHandlers to set up test data as in the sample project.

const stateHandlers = {
  "products exists": () => {
    controller.repository.products = new Map([
      ["10", new Product("10", "CREDIT_CARD", "28 Degrees", "5678")],
    ]);
  },
  "products exist": () => {
    controller.repository.products = new Map([
      ["10", new Product("10", "CREDIT_CARD", "28 Degrees", "5678")],
    ]);
  },
  "a product with ID 10 exists": () => {
    controller.repository.products = new Map([
      ["10", new Product("10", "CREDIT_CARD", "28 Degrees", "5678")],
    ]);
  },
  "a product with ID 11 does not exist": () => {
    controller.repository.products = new Map();
  },
};

My Question: 1. Can I use a real database instead? Instead of manually setting up test data in stateHandlers, can I point my provider verification to use a real database environment (like staging/test DB) to fetch actual data? 2. Can I completely avoid stateHandlers? Is it possible to connect directly to my working environment (staging/test database) and eliminate the need for stateHandlers altogether? Use Case: • I want to avoid maintaining test data in code • Prefer using real data from my test/staging environment • This would be especially useful for webhook-triggered verifications when consumer contracts are updated Is this possible/recommended? If so, how would I configure the provider verification to use an actual database connection instead of in-memory test data? Any guidance or examples would be greatly appreciated! 🙏 Thanks!

Hi Team! I'm having trouble getting my OpenAPI specification to be parsed by Pactflow using discriminators. I have followed the guidelines outlined here: Keyword Support | PactFlow Documentation The error I am seeing is:

"message": "discriminator: oneOf subschemas (or referenced schemas) must have \"properties/transactionType\""

What I cannot understand is why it's complaining about the transactionType not being declared within subschemas, when all of them explicityly define it alongside a fixed enum value. Here is a sample of what my schema definitions look like:

Transaction:
      required:
        - transactionDetails
        - transactionType
      type: object
      properties:
        transactionType:
          type: string
          description: 'Type of transaction. Used as a discriminator for polymorphic deserialization.'
          example: transaction_a
        transactionDetails:
          $ref: '#/components/schemas/TransactionDetails'
      description: Transaction Details
      discriminator:
        propertyName: transactionType
      oneOf:
        - $ref: '#/components/schemas/TransactionA'
        - $ref: '#/components/schemas/TransactionB'
TransactionA:
      required:
        - transactionDetails
        - transactionType
      type: object
      description: Transaction A Details
      allOf:
        - $ref: '#/components/schemas/Transaction'
        - type: object
          properties:
            transactionDetails:
              $ref: '#/components/schemas/TransactionADetails'
            transactionType:
              type: string
              description: Constant discriminator identifying this transaction subtype
              readOnly: true
              example: transaction_a
              enum:
                - transaction_a        
TransactionB:
      required:
        - transactionDetails
        - transactionType
      type: object
      description: Transaction B Details
      allOf:
        - $ref: '#/components/schemas/Transaction'
        - type: object
          properties:
            transactionDetails:
              $ref: '#/components/schemas/TransactionBDetails'
            transactionType:
              type: string
              description: Constant discriminator identifying this transaction subtype
              readOnly: true
              example: transaction_b
              enum:
                - transaction_b

Hello there, I've been continuing on with my Pactflow proof of concept. However I started running into an issue yesterday where the

AVJ

processing has been throwing the error:

"message": "discriminator: mapping is not supported"

. It seems to me like something has changed on the Pactflow side? For example if I reupload the latest working version of my OAS spec, Pactflow processes it correctly. It looks like it's loading the comparison from cache as it shows:

Comparison details
Compared at
2025-08-18 11:57:19 GMT+1
Verifier
pactflow-openapi-pact-comparator
Version
1.5.1

Then, if I simply change the version attribute in the OAS and no changes whatsoever to the rest of the OAS, I get the error

info:
   version: {bump this}

I can also see that the comparison details show a brand new comparison:

Comparison details
Compared at
9 minutes ago
Verifier
pactflow-openapi-pact-comparator
Version
1.6.0

The key difference seems to be that version 1.6.0 throws the error on identical yaml contents

hey team, in a bidirectional validation, marking a delete as deprecated caused the validation to break entirely, as if it had been removed from the spec. The idea was to use the deprecation flag for a while to redirect consumers to another API. Is this the expected behavior? Thanks

Hi Where in current new UI there is an option we can turn on "allow dangerous contract modification" We found that during reruning of PRs the publish consumer contract task step is constantly failing is it is showing that contracts were not change and have race conditation. Is there any better way to handle that ? maybe there is an option to detect contract which were not changed and delete them or just overwrite ? https://docs.pactflow.io/docs/troubleshooting/disabling-dangerous-contract-modification

I forget how I got in this channel. How can I invite more members of my companies slack workspace here?

Hi, Regarding x-chase-api-store-servers which is added in API Marketplace and old server values are removed from swagger (I mean servers.url property).This causes pactflow contract tests (go/pactflow) fail to determine basepath. And when we check with API Marketplace team , they mentioned API Marketplace doesn't allow servers.url in the spec by default due to policy. So can you assist with the alternate option to this to pactflow to work, because when we try to run the pactflow , it is failing with basepath is empty

Hi, I’m currently evaluating the PactFlow Enterprise trial and integrating it with Keycloak using SAML. During the setup, I encountered the following error from PactFlow:

(saml) Authentication failure! invalid_ticket: OneLogin::RubySaml::ValidationError, Found an unexpected number of Signature Element. SAML Response rejected

I reviewed the environment variable documentation here: https://docs.pactflow.io/docs/on-premises/environment-variables , but couldn’t find any variables related to configuring a SAML client ID or client secret. Could anyone please advise whether these settings are supported, or if there’s an alternative way to configure them for SAML integration with Keycloak? Thank you!

Can you explain what you're trying to do? Perhaps a link to the relevant keycloak section and I can take a look for you The general docs for SAML setup are here: https://docs.pactflow.io/docs/on-premises/authentication/saml There is an example setup here: https://docs.pactflow.io/docs/on-premises/authentication/saml#docker-compose-example They use all of the key features we support.

Hi there, I'm trying to add https://github.com/pactflow/actions/tree/main/publish-provider-contract#example to my workflow file. But each time I'm getting errors

[run-consumer-contract-tests/Contract Tests - Consumer/Publish provider's contract for JS services]   ☁  git clone '<https://code>.(...).com/pactflow/actions' # ref=v2
[run-consumer-contract-tests/Contract Tests - Consumer/Publish provider's contract for JS services] [DEBUG]   cloning <https://code>.(...).com/pactflow/actions to /Users/(...)/.cache/act/pactflow-actions-publish-pact-files@v2
[run-consumer-contract-tests/Contract Tests - Consumer/Publish provider's contract for JS services] Unable to clone <https://code>.(...).com/pactflow/actions refs/heads/v2: repository not found: Repository not found.
[run-consumer-contract-tests/Contract Tests - Consumer/Publish provider's contract for JS services] repository not found: Repository not found.
[run-consumer-contract-tests/Contract Tests - Consumer/Publish provider's contract for JS services] [DEBUG] skipping post step for 'Archive App Run Log'; step was not executed
[run-consumer-contract-tests/Contract Tests - Consumer/Publish provider's contract for JS services] [DEBUG] skipping post step for 'pactflow/actions/publish-pact-files@v2'; step was not executed

It looks like it's trying to get that action from our GHEC server. I also tried to set

github-server-url

first for checkout action. How should I use it when working on GHEC? Preferably not copying that action repo to our instance *I hope I used proper channel

Hi, I’d like to check if the on-prem version of PactFlow (enterprise v2.3.0) supports AI features such as MCP. Also, does MCP support Python? I encountered an error while trying it out on the cloud PactFlow:

Error: MPC -32602: MCP error -32602: Invalid arguments for tool contract-testing_generate_pact_tests: [
  {
    "received": "python",
    "code": "invalid_enum_value",
    "options": [
      "javascript",
      "typescript",
      "java",
      "golang",
      "dotnet",
      "kotlin",
      "swift",
      "php"
    ],
    "path": [
      "language"
    ],
    "message": "Invalid enum value. Expected 'javascript' | 'typescript' | 'java' | 'golang' | 'dotnet' | 'kotlin' | 'swift' | 'php', received 'python'"
  }
]

Thanks!

Hey there, is any way to pool/ get a response that says webhook finished executing after pactflow determines it needs to execute such a webhook?

Hi friends! I'm trying to find a way to bulk delete contracts for a pacticipant (consumer or provider), ideally something programmatic like an API endpoint that we can use in our current contract testing system to clear out old obsolete contracts. We would want to delete all contracts older than some given date. Is this possible? I see some documentation on deleting pacts but i don't see this documented in the current Pactflow API docs .

🎺 Swagger Contract Testing made it into 2025 DevOps Dozen Awards! PactFlow has been going through major changes for the better since joining the SmartBear fold. We are continually iterating and delivering features such as AI augmented contract testing capabilities such test generation/review, and a Swagger Studio integration enabling OpenAPI designers to get field level insight of consumer usage at design time, providing huge time saving for organisations of all sizes. We have lots more planned for the future and we couldn’t do it without you all, so thank you for using our tools, and always providing feedback. If you want to pay a little nod back to the engineering and product teams that make it possible, why not drop the team a vote Scroll down to #23 Swagger Contract Testing: Best New DevOps Tool. Voting takes less than 30 seconds, and the deadline is 31st December. Voting:- https://www.surveymonkey.com/r/DevOps-Dozen-2025 Full list:- https://devops.com/devops-dozen-2025-finalists-announced There are also lots of other categories too, so feel free to explore and vote for other tools, services, people, podcasts and conferences you love as well!

Hello team, I am new to this Slack space, I hope it is fine to ask. I am trying to record a deployment to PactFlow and I am getting this error:

Error making request to <https://myorg.pactflow.io/pacticipants/my-service-name/versions/my-version-here/deployed-versions/environment/my-environmnet-here> status=403 Forbidden. Either you are using a read only token for a request that requires a write token (the most likely cause), or you do not have the required permissions.

I fear that the token that is being used does not have write rights. Does anyone where I can find documentation around how to create tokens for recording deployments for a given team in PactFlow? Thank you in advance!

I am running into an API issue with the pactflow API. I have been using the following API call:

curl -H "Accept: application/hal+json" -H "Authorization: Bearer $PACT_BROKER_TOKEN" https://${my_pact_org}.<http://pactflow.io/pacts/provider/${provider}/consumer/${consumer}/branch/main/latest|pactflow.io/pacts/provider/${provider}/consumer/${consumer}/branch/main/latest>"

To retrieve the latest version of a contract between two applications on the main branch. This used to work fine for a long time, but since yesterday the response I get no longer contacts the pact

interactions

also the

consumer

and

provider

objects are missing in the json reponse. Did this API change? Is there any other way to retrieve the latest pact (on main) for a pair of applications?