litmuschaos / litmus

Litmus helps SREs and developers practice chaos engineering in a Cloud-native way. Chaos experiments are published at the ChaosHub (https://hub.litmuschaos.io). Community notes is at https://hackmd.io/a4Zu_sH4TZGeih-xCimi3Q
https://litmuschaos.io
Apache License 2.0
4.44k stars 697 forks source link

chore(deps): Bump go.mongodb.org/mongo-driver from 1.16.1 to 1.17.0 in /chaoscenter/authentication #4891

Closed dependabot[bot] closed 2 months ago

dependabot[bot] commented 2 months ago

Bumps go.mongodb.org/mongo-driver from 1.16.1 to 1.17.0.

Release notes

Sourced from go.mongodb.org/mongo-driver's releases.

MongoDB Go Driver 1.17.0

The MongoDB Go Driver Team is pleased to release version 1.17.0 of the official MongoDB Go driver.

Release Notes

This release adds support for client authentication using OpenID Connect (MONGODB-OIDC), and for the Queryable Encryption Range Protocol. The driver now supports MongoDB 8.0. Additionally, IndexView has been extended to include methods for dropping indexes by key (i.e. DropOneWithKey and DropWithKey).

[!NOTE]

This is the last planned minor release in the 1.x series. Future driver versions will be in the 2.x series. The v1.17.x will still receive security and bug fixes for a year.

Queryable Encryption Range Protocol

Added range protocol support for Queryable Encryption.

MONGODB-OIDC

Added support OpenID Connect (OIDC) authentication for workload identities. A workload identity is an identity you assign to a software workload, such as an application, service, script, or container, to authenticate and access other services and resources.

See the documentation for more details.


For a full list of tickets included in this release, please see the links below:

Full Changelog: v1.16.1...v1.17.0

Documentation for the Go driver can be found on pkg.go.dev and the MongoDB documentation site. BSON library documentation is also available on pkg.go.dev. Questions and inquiries can be asked on the MongoDB Developer Community. Bugs can be reported in the Go Driver project in the MongoDB JIRA where a list of current issues can be found. Your feedback on the Go driver is greatly appreciated!

Commits
  • 5484657 BUMP v1.17.0
  • be25b9a GODRIVER-3302 Handle malformatted message length properly. (#1758)
  • 4757f44 GODRIVER-3312 Use remaining test secrets from the vault [v1] (#1811)
  • 6bcc3dc Remove GCP from supplied callback example (#1809)
  • b133d71 GODRIVER-2587 Implement modifyCollection for the unified test runner (#1796) ...
  • c5b9705 GODRIVER-3331 Fix default authSource for SRV connections (#1795)
  • 485e74d GODRIVER-2758: Add documentation examples (#1759)
  • ac03e73 GODRIVER-3324 Upgrade CI Go to 1.22 and golangci-lint to 1.59.1. (#1783)
  • 56e75b2 GODRIVER-3195 Sync updated QE Range tests (#1789) [v1] (#1790)
  • 783cc6c GODRIVER-3290 Mention the final 1.x release in the release notes (#1788)
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)