Skip to content

Bump the npm_and_yarn group across 1 directory with 2 updates #4

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Bump the npm_and_yarn group across 1 directory with 2 updates #4

wants to merge 1 commit into from

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Sep 6, 2024

Bumps the npm_and_yarn group with 2 updates in the / directory: mongodb and mongoose.

Updates mongodb from 4.16.0 to 4.17.2

Release notes

Sourced from mongodb's releases.

v4.17.2

4.17.2 (2023-11-16)

The MongoDB Node.js team is pleased to announce version 4.17.2 of the mongodb package!

Release Notes

Fix connection leak when serverApi is enabled

When enabling serverApi the driver's RTT mesurment logic (used to determine the closest node) still sent the legacy hello command "isMaster" causing the server to return an error. Unfortunately, the error handling logic did not correctly destroy the socket which would cause a leak.

Both sending the correct hello command and the error handling connection clean up logic are fixed in this change.

Bug Fixes

  • NODE-5751: RTTPinger always sends legacy hello (#3923) (bc3d020)

Documentation

We invite you to try the mongodb library immediately, and report any issues to the NODE project.

v4.17.1

4.17.1 (2023-08-23)

The MongoDB Node.js team is pleased to announce version 4.17.1 of the mongodb package!

Release Notes

Import of saslprep updated to correct library.

Fixes the import of saslprep to be the correct @mongodb-js/saslprep library.

Bug Fixes

Documentation

We invite you to try the mongodb library immediately, and report any issues to the NODE project.

v4.17.0

4.17.0 (2023-08-17)

... (truncated)

Changelog

Sourced from mongodb's changelog.

4.17.2 (2023-11-16)

Bug Fixes

  • NODE-5751: RTTPinger always sends legacy hello (#3923) (bc3d020)

4.17.1 (2023-08-23)

Bug Fixes

4.17.0 (2023-08-17)

Features

  • NODE-5272: do not create or drop ecc collections (#3678) (d26ad61)
  • NODE-5398: use mongodb-js/saslprep instead of saslprep (#3820) (5244711)

Bug Fixes

  • NODE-5262: AWS Lambda metadata detection logic is too permissive (#3683) (c0c3d99)
  • NODE-5311: construct error messages for AggregateErrors in Node16+ (#3683) (98b7bdf)
  • NODE-5316: prevent parallel topology creation in MongoClient.connect (#3696) (e13038d)
  • NODE-5356: prevent scram auth from throwing TypeError if saslprep is not a function (#3732) (2d028af)
  • NODE-5536: remove credentials from ConnectionPoolCreatedEvent options (#3812) (2910dca)
Commits
  • aab9c46 chore(4.x): release 4.17.2 [skip-ci] (#3926)
  • bc3d020 fix(NODE-5751): RTTPinger always sends legacy hello (#3923)
  • c698918 test(NODE-5738): update data lake test scripts (#3920)
  • 3934465 ci(NODE-5654): remove vars from evergreen config (#3881)
  • 278523a ci(NODE-5667): remove custom dep tests against master and fix prose test 14 (...
  • 85996c3 test(NODE-5618): use npm 9 on eol node versions (#3862)
  • cdc3d53 chore(4.x): release 4.17.1 [skip-ci] (#3840)
  • ff6c293 fix(NODE-5573): fix saslprep import (#3838)
  • c83a801 chore(4.x): release 4.17.0 [skip-ci] (#3763)
  • 1b59955 chore: update release automation scripts 4.x (#3824)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by dbx-node, a new releaser for mongodb since your current version.


Updates mongoose from 6.11.2 to 6.13.0

Changelog

Sourced from mongoose's changelog.

6.13.0 / 2024-06-06

  • feat(model): add throwOnValidationError option for opting into getting MongooseBulkWriteError if all valid operations succeed in bulkWrite() and insertMany() #14599 #14587 #14572 #13410

7.6.13 / 2024-06-05

  • fix(query): shallow clone $or and $and array elements to avoid mutating query filter arguments #14614 #14610
  • types: pass DocType down to subdocuments so HydratedSingleSubdocument and HydratedArraySubdocument toObject() returns correct type #14612 #14601
  • docs(migrating_to_7): add id setter to Mongoose 7 migration guide #14645 #13672

8.4.1 / 2024-05-31

  • fix: pass options to clone instead of get in applyVirtuals #14606 #14543 andrews05
  • fix(document): fire pre validate hooks on 5 level deep single nested subdoc when modifying after save() #14604 #14591
  • fix: ensure buildBulkWriteOperations target shard if shardKey is set #14622 #14621 matlpriceshape
  • types: pass DocType down to subdocuments so HydratedSingleSubdocument and HydratedArraySubdocument toObject() returns correct type #14612 #14601

6.12.9 / 2024-05-24

  • fix(cast): cast $comment to string in query filters #14590 #14576
  • types(model): allow passing strict type checking override to create() #14571 #14548

7.6.12 / 2024-05-21

  • fix(array): avoid converting to $set when calling pull() on an element in the middle of the array #14531 #14502
  • fix: bump mongodb driver to 5.9.2 #14561 lorand-horvath
  • fix(update): cast array of strings underneath doc array with array filters #14605 #14595

8.4.0 / 2024-05-17

  • feat: upgrade mongodb -> 6.6.2 #14584
  • feat: add transactionAsyncLocalStorage option to opt in to automatically setting session on all transactions #14583 #13889
  • feat: handle initially null driver when instantiating Mongoose for Rollup support #14577 #12335
  • feat(mongoose): export omitUndefined() helper #14582 #14569
  • feat: add Model.listSearchIndexes() #14519 #14450
  • feat(connection): add listDatabases() function #14506 #9048
  • feat(schema): add schema-level readConcern option to apply default readConcern for all queries #14579 #14511
  • fix(error): remove model property from CastError to avoid printing all model properties to console #14568 #14529
  • fix(model): make bulkWrite() and insertMany() throw if throwOnValidationError set and all ops invalid #14587 #14572
  • fix(document): ensure transform function passed to toObject() options applies to subdocs #14600 #14589
  • types: add inferRawDocType helper #13900 #13772
  • types(document): make document _id type default to unknown instead of any #14541

8.3.5 / 2024-05-15

  • fix(query): shallow clone $or, $and if merging onto empty query filter #14580 #14567
  • types(model+query): pass TInstanceMethods to QueryWithHelpers so populated docs have methods #14581 #14574
  • docs(typescript): clarify that setting THydratedDocumentType on schemas is necessary for correct method context #14575 #14573

8.3.4 / 2024-05-06

... (truncated)

Commits
  • 53d382b chore: release 6.13.0
  • 37e73b8 Merge pull request #14599 from Automattic/vkarpov15/gh-14572-3
  • c3b4bdb chore: release 6.12.9
  • f4cfe1e feat(model): add throwOnValidationError option for opting into getting Mongoo...
  • eb61572 Merge pull request #14590 from Automattic/vkarpov15/gh-14576
  • a70ecc2 fix(cast): cast $comment to string in query filters
  • 07cb7da Merge pull request #14571 from Automattic/vkarpov15/gh-14548
  • ed79348 test: address code review comments
  • 92fa6eb types(model): allow passing strict type checking override to create()
  • c00a715 chore: release 6.12.8
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump the npm_and_yarn group across 1 directory with 2 updates
1f0a710 
Bumps the npm_and_yarn group with 2 updates in the / directory: [mongodb](https://github.com/mongodb/node-mongodb-native) and [mongoose](https://github.com/Automattic/mongoose).


Updates `mongodb` from 4.16.0 to 4.17.2
- [Release notes](https://github.com/mongodb/node-mongodb-native/releases)
- [Changelog](https://github.com/mongodb/node-mongodb-native/blob/v4.17.2/HISTORY.md)
- [Commits](mongodb/node-mongodb-native@v4.16.0...v4.17.2)

Updates `mongoose` from 6.11.2 to 6.13.0
- [Release notes](https://github.com/Automattic/mongoose/releases)
- [Changelog](https://github.com/Automattic/mongoose/blob/master/CHANGELOG.md)
- [Commits](Automattic/mongoose@6.11.2...6.13.0)

---
updated-dependencies:
- dependency-name: mongodb
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: mongoose
  dependency-type: direct:production
  dependency-group: npm_and_yarn
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Sep 6, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant