[Snyk] Upgrade mongodb from 6.8.1 to 6.9.0

[afgallo]

Snyk has created this PR to upgrade mongodb from 6.8.1 to 6.9.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 14 versions ahead of your current version.
• The recommended version was released a month ago, on 2024-09-12.

Release notes

Package name: mongodb

• 6.9.0 - 2024-09-12
  Read more
• 6.9.0-dev.20241012.sha.a473de95 - 2024-10-12
• 6.9.0-dev.20241011.sha.8def42de - 2024-10-11
• 6.9.0-dev.20241010.sha.6ecf198f - 2024-10-10
• 6.9.0-dev.20241003.sha.91f30357 - 2024-10-03
• 6.9.0-dev.20241002.sha.d56e235c - 2024-10-02
• 6.9.0-dev.20241001.sha.85f7dcf9 - 2024-10-01
• 6.9.0-dev.20240928.sha.3f9d2437 - 2024-09-28
• 6.9.0-dev.20240927.sha.681ddd8d - 2024-09-27
• 6.9.0-dev.20240926.sha.3d3da407 - 2024-09-26
• 6.9.0-dev.20240918.sha.643a8755 - 2024-09-18
• 6.9.0-dev.20240917.sha.20396e1b - 2024-09-17
• 6.9.0-dev.20240913.sha.8b0f3541 - 2024-09-13
• 6.8.2 - 2024-09-12
  

  6.8.2 (2024-09-12)

  The MongoDB Node.js team is pleased to announce version 6.8.2 of the mongodb package!

  Release Notes

  Fixed mixed use of cursor.next() and cursor[Symbol.asyncIterator]

  In 6.8.0, we inadvertently prevented the use of cursor.next() along with using for await syntax to iterate cursors. If your code made use of the following pattern and the call to cursor.next retrieved all your documents in the first batch, then the for-await loop would never be entered. This issue is now fixed.

  const firstDoc = await cursor.next();

  for await (const doc of cursor) {
  // process doc
  // ...
  }

  Bug Fixes

  • NODE-6367: enable mixed use of iteration APIs (#4234) (d63bf6f)

  Documentation

  • Reference
  • API
  • Changelog

  We invite you to try the mongodb library immediately, and report any issues to the NODE project.

• 6.8.1 - 2024-09-06
  

  6.8.1 (2024-09-06)

  The MongoDB Node.js team is pleased to announce version 6.8.1 of the mongodb package!

  Release Notes

  Fixed enableUtf8Validation option

  Starting in v6.8.0 we inadvertently removed the ability to disable UTF-8 validation when deserializing BSON. Validation is normally a good thing, but it was always meant to be configurable and the recent Node.js runtime issues (v22.7.0) make this option indispensable for avoiding errors from mistakenly generated invalid UTF-8 bytes.

  Bug Fixes

  • NODE-6355: respect utf8 validation option when iterating cursors (#4220) (886cefb)

  Documentation

  • Reference
  • API
  • Changelog

  We invite you to try the mongodb library immediately, and report any issues to the NODE project.

from mongodb GitHub release notes

Commit messages

Package name: mongodb

• 1dcf8b1 chore(main): release 6.9.0 [skip-ci] (#4164)
• 210c572 docs: generate docs from latest main [skip-ci] (#4147)
• 08912c8 fix(NODE-6367): enable mixed use of iteration APIs (#4231)
• 8347db9 test(NODE-6323): add performance no-op baseline test (#4194)
• 833eaa4 fix(NODE-6362): cache cursor deserialization options across deserialize calls (#4221)
• d6c147d feat(NODE-6365): pass through `allowPartialTrustChain` TLS flag (#4228)
• 91ceaf0 chore: specify branch when checking out GHA code (#4226)
• 27fd8a0 chore: quote branch names to avoid numeric conversion (#4224)
• 65e0e15 test(NODE-6317): fix test assertions and naming (#4217)
• f53e9d9 feat(NODE-6309): Mark range API as stable (#4190)
• 8bfe187 fix(NODE-6355): respect utf8 validation options when iterating cursors (#4214)
• fb13ebf test(NODE-6317): remove flaky unnecessary assertion (#4212)
• 6073828 chore: add a 6.8 release process workflow (#4215)
• 1f10bdf test(NODE-6343): unskip Case 4: KMIP should fail with no TLS (#4203)
• 6d65ae7 feat(NODE-6327): new client bulk write types and builders (#4205)
• 40ace73 test(NODE-5645): Define wire versions for `too_old` and `too_new` tests (#4200)
• c54466c chore(NODE-6268): update dev dependencies and add dependabot config (#4196)
• f525403 chore(NODE-6341): followup fix remove node18+ dns resolution order hooks (#4204)
• 62144ed chore(NODE-6341): remove node18+ dns resolution order hooks (#4202)
• 55bdeaa refactor(NODE-6325): implement document sequence support (#4201)
• 8622545 fix(NODE-6284): make sparsity and trimFactor optional (#4189)
• 1ce2f0d refactor(NODE-6335): remove recursion from transaction APIs (#4198)
• b70c885 test(NODE-6318): utf runner withTransaction callback propagates errors from operations (#4193)
• 5565d50 perf(NODE-5906): optimize toArray to use batches (#4171)

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 100.00%. Comparing base (965bfd8) to head (d5183a8).
Report is 2 commits behind head on main.

Additional details and impacted files

@@            Coverage Diff            @@
##              main       #16   +/-   ##
=========================================
  Coverage   100.00%   100.00%           
=========================================
  Files            2         2           
  Lines           87        87           
=========================================
  Hits            87        87           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.