search

stefan-kolb / paas-profiles

Making Platform as a Service offerings comparable - Ecosystem profiles for portability matching.
https://PaaSfinder.org
Other
137 stars 66 forks source link

Bump mongo from 2.8.0 to 2.16.4 #566

Closed dependabot[bot] closed 1 month ago

dependabot[bot] commented 11 months ago

Bumps mongo from 2.8.0 to 2.16.4.

Release notes

Sourced from mongo's releases.

2.16.4

This is a patch release that fixes the following issue:

2.16.3

This patch release in the 2.16 series fixes the following issues:

2.16.2

This bug fix release in the 2.16 series repairs a regression manifesting in Mongoid when using map_reduce and passing read preference:

2.16.1

This is a patch release in the 2.16 series.

The following bugs were fixed:

The following non-breaking changes were made:

2.16.0

This release adds the following new feature:

  • Load balancer support.

This release of the Ruby driver deprecates support for MongoDB server versions below 3.6.

2.16.0.alpha1

This release adds the following new feature:

  • Experimental load balancer support.

The following minor improvement has been made:

  • GridFS file retrieval no longer requires index creation privileges when the indexes already exist, and is thus usable with users that have only read permissions.

This release of the Ruby driver increases the minimum required Ruby versionto 2.4.

2.15.1

This patch release in the 2.15 series fixes the following issue:

... (truncated)

Changelog

Sourced from mongo's changelog.

.. _release-notes:

Release Notes

.. default-domain:: mongodb

This page documents significant changes in driver releases.

It is not an exhaustive list of changes and generally does not enumerate bug fixes; please consult the releases page on GitHub <https://github.com/mongodb/mongo-ruby-driver/releases>_ for a more comprehensive list of changes in each version of the driver and the releases page in Jira <https://jira.mongodb.org/projects/RUBY?selectedItem=com.atlassian.jira.jira-projects-plugin%3Arelease-page&status=released>_ for the complete list of changes, including those internal to the driver and its test suite.

.. _release-notes-2.19:

2.19

This release of the Ruby driver supports MongoDB version 7.0. The Ruby driver now supports Ruby 3.2. Ruby 2.5 and 2.6 are now deprecated.

This release includes the following new features:

  • The driver now limits the number of connections established by a connection pool simultaneously. By default the limit is 2. The limit can be configured with the :max_connecting option of the Mongo::Client constructor. The default should be sufficient for most applications. However, if your application is using a large number of threads, you may need to increase the limit.
  • Added support for automatic AWS credentials retrieval and authentication with temporary credentials when AWS KMS is used for client side encryption.
  • Added support for automatic GCP credentials retrieval when Google Cloud Key Management is used for client side encryption.
  • Added support the Azure VM-assigned Managed Identity for Automatic KMS Credentials when Azure Key Vault is used for client side encryption.
  • Queryable Encryption <https://www.mongodb.com/docs/upcoming/core/queryable-encryption/queryable-encryption/>_ support is extended.
  • Added support for Queryable Encryption Range Indexes.
  • A crypt_shared <https://www.mongodb.com/docs/manual/core/queryable-encryption/reference/shared-library/#download-the-automatic-encryption-shared-library>_ library can be now used instead of mongocryptd.
  • Added support for AWS IAM Roles for service accounts, EKS in particular.
  • AWS Credentials are now cached when possible.

.. _release-notes-2.18:

... (truncated)

Commits


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 1 month ago

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.