The MongoDB Go Driver Team is pleased to release version 1.10.1 of the official Go driver.
Release Notes
This release, along with the libmongocrypt v1.5.2 release, fixes a potential encryption key corruption bug in ClientEncryption.RewrapManyDataKey that can lead to encrypted data corruption when rotating encryption keys backed by GCP or Azure key services.
This release also removes potentially confusing deprecation warnings added to some existing timeout mechanisms in the v1.10.0 release.
Fix for potential data corruption when rotating encryption keys
This release has been retracted due to a potential encryption key corruption bug in ClientEncryption.RewrapManyDataKey that can lead to encrypted data corruption when rotating encryption keys backed by GCP or Azure key services.
Please use version 1.10.1 or higher.
The MongoDB Go Driver Team is pleased to release version 1.10.0 of the official Go driver.
Release Notes
This release supports several new features introduced in MongoDB v6.0, including the following notable changes.
Queryable Encryption Support
This release includes new options to AutoEncryptionOpts and EncryptOpts to support Queryable Encryption. Queryable Encryption support requires MongoDB server 6.0 or newer, and libmongocrypt 1.5.0 or newer.
Automatic Encryption Shared Library
Add support for the new encryption helper, crypt_shared, referred to as the Shared Library. The shared library replacesmongocryptd and does not require spawning a new process.
Key Management API Operations
Add ClientEncryption entity operations for Key Management API with the purpose of
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot]
commented
1 year ago
Bumps go.mongodb.org/mongo-driver from 1.4.0 to 1.10.1.
Release notes
Sourced from go.mongodb.org/mongo-driver's releases.
... (truncated)
Commits
9c62b3fUpdate version to v1.10.106579a7GODRIVER-2489 createPipelineOptionsDoc: return err (#1036)bdfc953update for libmongocrypt 1.5.2 (#1037)51ecabdGODRIVER-2489 Return error if createPipelineOptionsDoc() fails (#1035)e6f6f26GODRIVER-2494 Skip StaleShardVersion resume test on 6.1+. (#1030)e095f2dGODRIVER-2495 Undeprecate legacy timeouts. (#1026)18da11cUpdate version to v1.10.1-prerelease5d004ccUpdate version to v1.11.0-prerelease9bbe96cGODRIVER-2464 Add delay in RTT monitor test so Windows can measure a non-zero...3b7e3ebUpdate version to v1.10.0Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)