[Snyk] Upgrade mongodb from 4.10.0 to 4.14.0

[snyk-bot]

Snyk has created this PR to upgrade mongodb from 4.10.0 to 4.14.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 5 versions ahead of your current version.
• The recommended version was released 2 months ago, on 2023-02-07.

Release notes

Package name: mongodb

• 4.14.0 - 2023-02-07
  

  The MongoDB Node.js team is pleased to announce version 4.14.0 of the mongodb package!

  Deprecations

  • NODE-4992: Deprecate methods and options that reference legacy logger (#3532) (6c94b4a)

  Bug Fixes

  • NODE-4999: Write Concern 0 Must Not Affect Read Operations (#3541) (ddfc2b9)
  • NODE-5026: revert "ensure that MessageStream is destroyed when connections are destroyed" (#3551) (c4da623)

  Documentation

  • Reference: https://docs.mongodb.com/drivers/node/current/
  • API: https://mongodb.github.io/node-mongodb-native/4.14/
  • Changelog: HISTORY.md

  We invite you to try the mongodb library immediately, and report any issues to the NODE project.

• 4.13.0 - 2022-12-19
  

  The MongoDB Node.js team is pleased to announce version 4.13.0 of the mongodb package!

  Features

  • NODE-4691: interrupt in-flight operations on heartbeat failure (#3457) (e641bd4)

  Bug Fixes

  • NODE-4447: disable causal consistency in implicit sessions (#3479) (6566fb5)
  • NODE-4834: ensure that MessageStream is destroyed when connections are destroyed (#3482) (8338bae)

  Documentation

  • Reference: https://docs.mongodb.com/drivers/node/current/
  • API: https://mongodb.github.io/node-mongodb-native/4.13/
  • Changelog: HISTORY.md

  We invite you to try the mongodb driver immediately, and report any issues to the NODE project.

• 4.12.1 - 2022-11-23
  

  The MongoDB Node.js team is pleased to announce version 4.12.1 of the mongodb package!

  Release Highlights

  This version includes a fix to a regression in our monitoring logic that could cause process crashing errors that was introduced in v4.12.0.

  If you are using v4.12.0 of the Node driver, we strongly encourage you to upgrade.

  Bug Fixes

  • NODE-4830: lazily import aws module (#3476) (ff375e9)
  • NODE-4831: check map value is not undefined (#3477) (9795cdb)

  Documentation

  • Reference
  • API
  • Changelog

  We invite you to try the mongodb library immediately, and report any issues to the NODE project.

• 4.12.0 - 2022-11-16
  

  The MongoDB Node.js team is pleased to announce version 4.12.0 of the mongodb package!

  Release Highlights

  ChangeStreams are now AsyncIterators

  ChangeStreams are now async iterables and can be used anywhere that expects an async iterable. Notably, change streams can now be used in Javascript for-await loops:

  const changeStream = collection.watch();
  for await (const change of changeStream) {
    console.log(“Received change: “, change);
  }

  Some users may have been using change streams in for-await loops manually by using a for-await loop with the ChangeStream’s internal cursor. For example:

  const changeStream = collection.watch();
  for await (const change of changeStream.cursor) {
    console.log(“Received change: “, change);
  }

  The change stream cursor has no support for resumabilty and consequently the change stream will never attempt to resume on any errors. We strongly caution against using a change stream cursor as an async iterable and strongly recommend using the change stream directly.

  Server Monitoring Fix When Monitoring Events are Skipped

  Version 4.7.0 of the Node driver released an improvement to our server monitoring in FAAS environments by allowing the driver to skip monitoring events if there were more than one monitoring events in the queue when the monitoring code restarted. When skipping monitoring events that contained a topology change, the driver would incorrectly fail to update its view of the topology.

  Version 4.12.0 fixes this issue by ensuring that the topology is always updated when monitoring events are processed.

  Performance Improvements with Buffering

  This release also modifies the data structures used internally in the driver to use linked lists in places where random access is not required and constant time insertion and deletion is beneficial.

  External Contributions

  Many thanks to @ ImRodry for helping us fix the documentation for our deprecated callback overloads in this release!

  Features

  • NODE-4683: make ChangeStream an async iterable (#3454) (df8d9a4)

  Deprecations

  • NODE-4681: deprecate modify result (#3459) (6a8776c)
  • NODE-4733: deprecate result and getLastOp (#3458) (a143d3b)
  • NODE-4757: deprecate unused PipeOptions (#3466) (1a5e619)
  • NODE-4809: deprecate the existing logger (#3464) (1eea4f0)

  Bug Fixes

  • NODE-4609: allow mapping to falsey non-null values in cursors (#3452) (1bf6ef1)
  • NODE-4735: fix change stream consecutive resumabilty (#3453) (89b27e9)
  • NODE-4753: remove erroneous deprecation of geoNear (#3465) (199dcaf)
  • NODE-4783: handle orphaned operation descriptions (#3463) (4c9b4d8)

  Documentation

  • Reference
  • API
  • Changelog

  We invite you to try the mongodb library immediately, and report any issues to the NODE project.

• 4.11.0 - 2022-10-19
  Read more
• 4.10.0 - 2022-09-19
  Read more

from mongodb GitHub release notes

Commit messages

Package name: mongodb

• 908b3b6 chore(release): 4.14.0
• c4da623 fix(NODE-5026): revert "ensure that MessageStream is destroyed when connections are destroyed" (#3551)
• 6a906fc ci(NODE-5012): break apart mongosh integration tests (#3546)
• b1fc872 test(NODE-5015): clientEncryption createEncryptedCollection helper (#3555)
• ddfc2b9 fix(NODE-4999): Write Concern 0 Must Not Affect Read Operations (#3541)
• ed6c957 test(NODE-4974): backport range index tests to 4x (#3539)
• 6c94b4a feat(NODE-4992): Deprecate methods and options that reference legacy logger (#3532)
• 4c49b2e ci: pull in misc CI fixes for the 4x branch (#3536)
• eb5f651 chore(release): 4.13.0
• 5d9711b docs: generate docs from latest main (#3471)
• 8338bae fix(NODE-4834): ensure that MessageStream is destroyed when connections are destroyed (#3482)
• 9f945c4 test(NODE-4800): update build env scripts (#3487)
• 6ef11d7 feat(NODE-4810): define the new Logger (#3475)
• dfcc3d9 test(NODE-4826): update command monitoring tests (#3488)
• d56414f test(NODE-4498): ts tests for OptionalId wrapping schemas with _id (#3486)
• e3ead58 ci(NODE-4872): add permissions to dependency check workflow (#3483)
• fb22f23 chore: update PR template commit message example (#3484)
• 6566fb5 fix(NODE-4447): disable causal consistency in implicit sessions (#3479)
• bb6683d ci(NODE-4856): break apart ts tests into separate tasks and skip failing tasks on typescript next (#3474)
• a57cd64 chore(no-story): allow clones that use https in docs pre-generation check (#3481)
• 57b98e0 ci(NODE-4842): add latest Node version to CI (#3478)
• 9a3055a chore(no-story): add debug info to docs generation (#3480)
• e641bd4 feat(NODE-4691): interrupt in-flight operations on heartbeat failure (#3457)
• 73e92ce chore(release): 4.12.1

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs