YAML Validator — Fix YAML Errors Before They Break Your Deploy
📷 Lukas from Pexels / PexelsYAML Validator — Fix YAML Errors Before They Break Your Deploy
YAML's whitespace sensitivity and quirky quoting rules cause real production failures. Learn the most common YAML mistakes, how to validate before you push, and when to use YAML over JSON.
The Deploy That Taught Me to Validate First
It was a Friday afternoon — the worst possible time for this to happen. A Kubernetes deployment had been sitting in review for two days, and after the final approval came through, the kubectl apply command spat out an error that stopped everything:
error: error parsing deployment.yaml: error converting YAML to JSON: yaml: line 34: mapping values are not allowed in this context
Line 34. In a 200-line manifest. The culprit turned out to be this:
env:
- name: DATABASE_URL
value: postgres://user:password@host:5432/db
Looks fine, right? Wrong. The colon in the value string — user:password — was being partially interpreted as YAML mapping syntax. The fix was trivial:
env:
- name: DATABASE_URL
value: "postgres://user:password@host:5432/db"
One pair of quotes. Thirty minutes of debugging. The lesson: validate your YAML before it touches anything that matters.
Why YAML Is Legitimately Tricky
YAML has a reputation problem. It looks simple — no brackets, no braces, just indented key-value pairs. That simplicity is real, but it comes with a hidden tax: YAML's rules are surprisingly complex to reason about, especially for edge cases.
Whitespace is syntax. In most languages, whitespace is cosmetic. In YAML, the number of spaces before a key defines its place in the document tree. Two spaces means one level of nesting; four means two. If you get that wrong, the parser either errors out or silently creates a different structure than you intended. The "silently creates a different structure" case is the dangerous one.
No tabs. Ever. This trips people up constantly. Your editor may insert tabs when you press the Tab key, you might paste YAML from a blog post that used tabs, or you might inherit a config from someone whose editor had different settings. YAML parsers will reject tabs used for indentation with an error like found character that cannot start any token.
Type inference is aggressive. YAML tries to be helpful by guessing types. This creates some famous footguns:
# These are all NOT strings in YAML 1.1 (the version most tools use)
version: 1.0 # float, not string
enabled: yes # boolean true, not the string "yes"
id: 08 # octal 8... or a parse error
country: NO # boolean false (Norway's ISO code!)
If you need these to be strings, you must quote them. Always.
Multi-line strings are non-obvious. YAML has two multi-line scalar styles — literal block (|) and folded block (>). Literal preserves newlines; folded converts single newlines to spaces. Both have chomping indicators (|+, |-) that control whether trailing newlines are kept or stripped. Getting this wrong produces subtle bugs in shell scripts embedded in CI configs.
The Most Common YAML Errors (With Examples)
1. Unquoted strings containing colons
# BROKEN — colon creates an implicit mapping
message: Error: connection refused
# FIXED
message: "Error: connection refused"
2. Tabs instead of spaces
# BROKEN (tab before "name")
server:
name: prod-01 # tab character here — will error
# FIXED (spaces)
server:
name: prod-01
3. Inconsistent indentation
# BROKEN — "port" is indented 4 spaces while "host" uses 2
database:
host: localhost
port: 5432 # wrong — this makes "port" a child of "host"
# FIXED
database:
host: localhost
port: 5432
4. Unquoted special characters
# BROKEN — # starts a comment, so "value" is lost
description: This is important # not a comment here
# Actually fine — inline comments are valid YAML, but if you want the # in the value:
description: "This is important # still part of the string"
# BROKEN — & and * are anchor/alias syntax
label: "AT&T" # fine
label: AT&T # might be fine, but risky — quote it anyway
5. Duplicate keys
# BROKEN — second "host" silently overwrites the first in most parsers
database:
host: localhost
port: 5432
host: prod.example.com # duplicate — bad
Most YAML parsers accept duplicate keys without error, using the last value. This is a spec violation and a source of real bugs when you refactor a config and forget you already set a key higher up.
6. Incorrect boolean and null values
# All of these are boolean true in YAML 1.1:
enabled: true
enabled: True
enabled: TRUE
enabled: yes
enabled: Yes
enabled: on
# All of these are null:
value: ~
value: null
value: Null
# If you want the string "yes" or "null", quote it:
status: "yes"
type: "null"
7. Anchor/alias mistakes
defaults: &defaults
timeout: 30
retries: 3
production:
<<: *defaults # merge key — valid but confusing
timeout: 60 # overrides the anchor value
staging:
<<: *defaults
timeout: 15
Anchors and aliases are powerful for DRY configs, but they make documents harder to reason about. If you have a bug in your anchor, it propagates everywhere it's aliased.
How to Use the YAML Validator
The YAML validator at toolboxhubs.com is designed for the workflow where you catch errors before they reach your pipeline.
Step 1 — Paste your YAML. Copy the entire contents of your config file — docker-compose.yml, .github/workflows/deploy.yml, values.yaml, whatever you're working on — and paste it into the input panel.
Step 2 — Run the validation. The validator parses your YAML immediately and reports the first syntax error it finds, including the line number. Fix it and re-run.
Step 3 — Review the parsed output. Beyond just catching errors, the validator shows you the parsed structure as a tree. This is where you catch logic errors — maybe your key is in the right place syntactically but at the wrong nesting level. Seeing the parsed tree often reveals problems that the raw YAML obscures.
Step 4 — Check types. Pay attention to whether strings are showing up as strings, booleans as booleans, and numbers as numbers. If your version: 3.8 is being parsed as a float instead of a string, you'll see it here before it causes problems downstream.
If you need to convert between formats, the JSON to YAML converter handles round-trips between the two, and the JSON formatter is useful when you're working with both formats in the same project.
YAML vs JSON — When to Choose Which
This comes up constantly in config management discussions, and the honest answer is that each format has a genuine home.
Use YAML when:
- Humans will edit the file regularly (CI configs, Kubernetes manifests, Ansible playbooks)
- Comments are important — YAML supports
#comments, JSON does not - You want to reduce visual noise in nested structures
- The config is mostly static and not machine-generated
Use JSON when:
- The file is generated by code and read by code — humans rarely touch it
- You need strict type guarantees (no
yes/noambiguity) - You're dealing with an API that expects JSON
- You want the simplest possible tooling — every language has a JSON parser
The JSON superset thing. YAML 1.2 is technically a superset of JSON, meaning valid JSON is valid YAML. In practice, most YAML parsers implement YAML 1.1 (not 1.2), which has the yes/no/on/off boolean behavior that JSON obviously doesn't have. Don't assume perfect interoperability without testing.
For mixed projects, the XML formatter rounds out the config format toolkit if you're also dealing with Maven POMs, Spring configs, or older enterprise systems.
YAML in Specific Tools
GitHub Actions
GitHub Actions workflows are YAML, and they have some quirks beyond standard YAML:
name: Deploy
on:
push:
branches: [main]
jobs:
deploy:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Run tests
run: npm test
env:
NODE_ENV: test
DATABASE_URL: ${{ secrets.DATABASE_URL }}
The ${{ }} expression syntax is not YAML syntax — it's evaluated by Actions before YAML parsing. This means a bare ${{ }} in an unquoted string position can confuse some YAML validators. GitHub's own editor handles this, but third-party validators may flag it.
Docker Compose
The docker-compose.yml format has evolved through versions 2 and 3, and the version field behavior changed:
services:
app:
image: node:20-alpine
ports:
- "3000:3000"
environment:
- NODE_ENV=production
volumes:
- ./src:/app/src:ro
depends_on:
db:
condition: service_healthy
Note "3000:3000" quoted — the colon makes it necessary. Many Docker Compose YAML errors come from forgetting to quote port mappings.
Kubernetes Manifests
Kubernetes YAML is verbose and deeply nested. The most common mistake beyond indentation is getting apiVersion, kind, metadata, and spec at the wrong level:
apiVersion: apps/v1
kind: Deployment
metadata:
name: my-app
labels:
app: my-app
spec:
replicas: 3
selector:
matchLabels:
app: my-app
template:
metadata:
labels:
app: my-app
spec:
containers:
- name: my-app
image: my-app:latest
ports:
- containerPort: 8080
The spec.template.spec double-nesting catches people frequently. The inner spec is the Pod spec; the outer is the Deployment spec. Getting the indentation wrong here produces a valid YAML document that Kubernetes rejects at apply time.
Ansible
Ansible playbooks make heavy use of YAML anchors and multi-line strings:
- hosts: webservers
vars:
deploy_path: /var/www/app
tasks:
- name: Copy application files
copy:
src: "{{ item }}"
dest: "{{ deploy_path }}/{{ item }}"
loop:
- index.html
- app.js
- styles.css
The {{ }} Jinja2 template syntax needs quoting (as shown with "{{ item }}") or Ansible's YAML parser will interpret the opening { as a YAML flow mapping.
Tips for Writing YAML Without Errors
1. Use a linter, not just a validator. A validator tells you if YAML is syntactically valid. A linter like yamllint also enforces consistent indentation, trailing spaces, line length, and other style rules that prevent future bugs.
2. Configure your editor properly. Set your editor to use spaces (not tabs) for .yml and .yaml files, with 2-space indentation. Most editors support per-language settings. VS Code's YAML extension (by Red Hat) validates on the fly and schema-validates Kubernetes, GitHub Actions, and Docker Compose files automatically.
3. Quote strings defensively. If a string value contains :, #, {, }, [, ], *, &, or !, quote it. If it could be misinterpreted as a boolean or null, quote it. The cost is a few characters; the benefit is avoiding subtle parse-time bugs.
4. Validate before pushing. Add YAML validation to your pre-commit hooks:
# .pre-commit-config.yaml
repos:
- repo: https://github.com/adrienverge/yamllint
rev: v1.35.1
hooks:
- id: yamllint
args: [-d, relaxed]
5. Use anchors, but document them. Anchors reduce duplication but add cognitive overhead. If you use &defaults and <<: *defaults, add a comment explaining what the anchor contains and where it's used.
6. Watch out for the Norway problem in production. Any config that uses two-letter country codes, day abbreviations (Sun, Sat), or month abbreviations (Jan) as plain string values risks boolean or other type coercion in YAML 1.1. Quote them unconditionally.
7. Know your parser's YAML version. Python's PyYAML uses 1.1 by default (the problematic one with yes/no/on/off as booleans). Go's gopkg.in/yaml.v3 implements 1.2. JavaScript's js-yaml defaults to 1.2 as well. This matters when you share configs across toolchains.
FAQ
Why does YAML fail when JSON would work?
JSON has strict, unambiguous syntax. Every string is quoted, every structure uses explicit brackets and braces. YAML tries to be human-friendly by inferring types and structure from indentation and context — which means a missing space, an unexpected tab, or an unquoted special character can silently change the meaning or throw a parse error entirely.
What is the most common YAML error?
Indentation mistakes, by a wide margin. YAML uses spaces (never tabs) to define nesting, and mixing two-space with four-space indentation, or accidentally indenting a key one space too many, produces either a parse error or — worse — valid YAML with the wrong structure. The second most common is unquoted strings containing colons.
Does YAML allow tabs for indentation?
No. Tabs are explicitly forbidden for indentation. This catches developers off guard when their editor auto-inserts a tab, or when they paste config from a source that uses tabs. YAML parsers will reject tabs used for indentation with a found character that cannot start any token error.
How do I validate YAML in a CI pipeline?
The yamllint tool is the standard choice — it integrates cleanly into pre-commit hooks and GitHub Actions. For Kubernetes specifically, kubeval or kube-score validate both YAML syntax and schema compliance. For GitHub Actions workflows, actionlint validates the semantics of the workflow itself (steps, action versions, expression syntax).
What does the Norway problem mean for YAML configs?
In YAML 1.1, the two-letter string NO is parsed as boolean false — because no is a recognized boolean false value, and YAML is case-insensitive for these keywords. Norway's ISO 3166-1 alpha-2 country code is NO. Any config that stores country codes as unquoted YAML scalars will silently convert Norway to false. Always quote country codes, status strings like yes/no, and anything else that could collide with YAML's reserved keywords.
Conclusion
YAML is the dominant configuration language for modern infrastructure tooling — Kubernetes, GitHub Actions, Docker Compose, Ansible, and most CI/CD systems are built around it. That makes knowing its failure modes genuinely important, not just academically interesting.
The practical workflow is simple: paste your config into the YAML validator before pushing, especially for anything that touches a deployment pipeline. It takes ten seconds and catches the class of errors that would otherwise send you chasing down a cryptic line number in a 200-line manifest on a Friday afternoon.
If you're converting configs between formats, JSON to YAML handles the conversion cleanly, and JSON formatter is useful for validating the JSON side of the equation. Get in the habit of validating first — future you will appreciate it.