search

apiaryio / dredd-example

Example application using Dredd and CI
MIT License
85 stars 61 forks source link

chore(deps-dev): bump mongodb from 3.3.3 to 3.5.6 #96

Closed dependabot-preview[bot] closed 4 years ago

dependabot-preview[bot] commented 4 years ago

Bumps mongodb from 3.3.3 to 3.5.6.

Release notes

Sourced from mongodb's releases.

v3.5.6

The MongoDB Node.js team is pleased to announce version 3.5.6 of the driver

Release Highlights

Regression in map when cursor used as a stream

@dobesv helped identify a regression where a map function would be applied twice if defined on a cursor, and that cursor was used to stream data.

TypeError: Cannot read property 'code' of undefined

User @linus-hologram originally reported an issue with a TypeError when the lambda passed to the withTransaction helper rejected with a null value. @vkarpov15 submitted the fix.

readPreferenceTags interpreted as an array

A bug was fixed where readPreferenceTags with a single value in the connection string was not properly interpreted as an array of tags. This prevented the Use Analytics Nodes to Isolate Workload guidance from working correctly.

Cannot set property 'isDirty' of null

User @sean-daley reported seeing this in an AWS Lambda environment, but has proven to be somewhat of a heisenbug. We are rolling out a fix here that ensures sessions (implicit or not) are not used after they have been explicitly ended.

Thanks very much to all the community members who contributed to this release!

Release Notes

Bug

  • [NODE-2503] - Cursor ReadStream applies map function twice
  • [NODE-2515] - TypeError when transaction is rejected with empty reason
  • [NODE-2541] - readPreferenceTags are not interpreted as an array
  • [NODE-2545] - Cannot set property &[#39](https://github.com/mongodb/node-mongodb-native/issues/39);isDirty&[#39](https://github.com/mongodb/node-mongodb-native/issues/39); of null
  • [NODE-2549] - Unknown topology should return empty array for server selection with read preference

v3.5.5

The MongoDB Node.js team is pleased to announce version 3.5.5 of the driver

Release Highlights

Regression in hasNext when using a cursor with a limit

@peterbroadhurst helped point out a regression introduced in v3.5.4 where using hasNext

... (truncated)
Commits
  • 08e89c0 chore(release): 3.5.6
  • e43d39a chore: require bson 1.1.4 or higher
  • a6f6da0 test: wait for mock server creation before using it
  • 611be8d fix: only mark server session dirty if the client session is alive
  • 7403e31 docs: Fix typo in Collection#find param
  • f9e786a fix: always return empty array for selection on unknown topology
  • d6f3001 Revert "fix: createCollection only uses listCollections in strict mode"
  • a50611b fix: single readPreferenceTags should be parsed as an array
  • d368f12 fix: createCollection only uses listCollections in strict mode
  • 153646c fix: don't throw if withTransaction() callback rejects with a null reason
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in the `.dependabot/config.yml` file in this repo: - Update frequency - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired)
dependabot-preview[bot] commented 4 years ago

Superseded by #98.