Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Upgrade bson from 4.0.2 to 4.6.0 #12

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

[Snyk] Upgrade bson from 4.0.2 to 4.6.0 #12

wants to merge 1 commit into from

Conversation

snyk-bot
Copy link

@snyk-bot snyk-bot commented Jan 4, 2022

Snyk has created this PR to upgrade bson from 4.0.2 to 4.6.0.

merge advice
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 16 versions ahead of your current version.
  • The recommended version was released a month ago, on 2021-11-23.
Release notes
Package name: bson
  • 4.6.0 - 2021-11-23

    The MongoDB Node.js team is pleased to announce version 4.6.0 of the bson package!

    Release Highlights

    This release adds a new BSON validation option that allows top-level keys to have utf-8 validation disabled or enabled, either on a global or key-specific scale, rather than defaulting to automatic utf-8 validation across all keys. Additionally, it includes a bug fix which allows BSONError and BSONTypeError to be checked with instanceof checks.

    Features

    Bug Fixes

    Documentation

    We invite you to try the bson library immediately, and report any issues to the NODE project.

  • 4.5.4 - 2021-11-03

    The MongoDB Node.js team is pleased to announce version 4.5.4 of the bson package!

    Release Highlights

    This release notably includes a fix to the ObjectId constructor ensuring correct handling of invalid input.

    Bug Fixes

    Documentation

    We invite you to try the bson library immediately, and report any issues to the NODE project.

  • 4.5.3 - 2021-10-05

    The MongoDB Node.js team is pleased to announce version 4.5.3 of the bson package!

    Release Highlights

    This release includes a few minor changes for spec compliance, primarily around validation, as detailed below:

    Bug Fixes

    Documentation

    We invite you to try the bson library immediately, and report any issues to the NODE project.

  • 4.5.2 - 2021-09-14

    The MongoDB Node.js team is pleased to announce version 4.5.2 of the bson package!

    Release Highlights

    Some APIs were marked internal that should've been public. We've also add toString methods to our Int32 and Double classes that wrap Javascript's Number.toString() method.

    Additionally a bug in Decimal128 was corrected where the representation string was wrongly used to find the significant digits. This impacted negative numbers of pattern -0.00XX.

    Bug Fixes

    Documentation

    We invite you to try the bson library immediately, and report any issues to the NODE project.

  • 4.5.1 - 2021-08-24

    The MongoDB Node.js team is pleased to announce version 4.5.1 of the bson module!

    In react native environments there was an issue where the bundler attempted to import the Node.js polyfill for 'util'.
    We no longer depend on the package.

    Bug Fixes

    Documentation

    We invite you to try the bson library immediately, and report any issues to the NODE project.

  • 4.5.0 - 2021-08-19

    The MongoDB Node.js team is pleased to announce version 4.5.0 of the bson module!

    Release Highlights

    The Timestamp constructor can now be called with a more convenient object parameter: new Timestamp({ t: number, i: number }); the existing new Timestamp(increment, timestamp) option has been deprecated.

    Furthermore, this minor version significantly improves deserialization performance for buffer inputs and corrects an issue with our ESM bundles resulting from a reference to global which does not exist in web environments.

    Features

    Bug Fixes

    Documentation

    We invite you to try the bson library immediately, and report any issues to the NODE project.

  • 4.4.1 - 2021-07-06

    The MongoDB Node.js team is pleased to announce version 4.4.1 of the bson package!

    Release Highlights

    This patch addresses the bugs listed below. Most notably our EJSON API now correctly stringifies Infinity and NaN doubles in relaxed mode. Relaxed mode is intended for human readable JSON while non-relaxed or canonical mode can be used for data serialization since it will preserve the original BSON type. Double check you are using the correct format for your use case.

    Bug Fixes

    Documentation

    We invite you to try the bson library immediately, and report any issues to the NODE project.

  • 4.4.0 - 2021-05-18

    The MongoDB Node.js team is pleased to announce version 4.4.0 of the bson module!

    Release Highlights

    This release of the BSON library brings some additional convenience to our Decimal128 and Long classes.
    Users can now specify the construction of these types as shown below:

    const longFromBigInt = new Long(23n)
const d128FromString = new Decimal128('4.23')

    Here is the new API specification:

    • [new] Decimal128(string)
    • [new] Long(string[, unsigned])
    • [new] Long(bigint[, unsigned])

    Thanks so much to @ addaleax to contributing a number of the fixes listed below! 🚀

    Features

    Bug Fixes

    Documentation

    We invite you to try the bson library immediately, and report any issues to the NODE project.

  • 4.3.0 - 2021-04-06

    The MongoDB Node.js team is pleased to announce version 4.3.0 of the bson module!

    Release Highlight

    UUID Support

    With this feature release we are introducing improved support for UUID usage in BSON.
    UUIDs in BSON are still a subset of Binary so there is a translation that must occur to use UUIDs in BSON documents.

    For example:

    // import { UUID, serialize, deserialize } from 'bson'
    const { UUID, serialize, deserialize } = require('bson')

    const myId = new UUID();
    const bsonBuffer = serialize({ myId: myId.toBinary() })
    const bsonResult = deserialize(bsonBuffer)
    myId.equals(bsonResult.myId.toUUID()) // true!

    Full API documentation for the new class will be available here soon after this release.

    Documentation

    We invite you to try the bson library immediately, and report any issues to the NODE project. A special thanks to @ steffenagger for his contribution to the library!

  • 4.2.3 - 2021-03-02
  • 4.2.2 - 2020-12-01
  • 4.2.1 - 2020-12-01
  • 4.2.0 - 2020-10-13
  • 4.1.0 - 2020-08-10
  • 4.0.4 - 2020-03-26
  • 4.0.3 - 2020-01-09
  • 4.0.2 - 2019-03-08
from bson GitHub release notes
Commit messages
Package name: bson
  • 5221825 chore(release): 4.6.0
  • 07019a0 feat(NODE-3740): Implement root and top level key utf-8 validation settings for BSON (#472)
  • d8f334b fix(NODE-3724): Fix BSONTypeError and BSONError to correctly handle instanceof checks (#471)
  • 0aa8967 chore(release): 4.5.4
  • e29156f chore: update .gitignore and PR template (#470)
  • 5f99b1b fix(NODE-3662): error checking to make sure that ObjectId results in object with correct properties (#467)
  • d388f1e fix(NODE-3640): Fix Int32 constructor to coerce its argument to int32 (#466)
  • 6894bae chore(release): 4.5.3
  • d75102d fix(NODE-3629): correct corpus runner and add null checks (#464)
  • 80d7f03 fix(NODE-3493): code and symbol tests are partially testing the wrong types (#459)
  • cc5d04d test(NODE-3447): prose tests for serialization of BSON with embedded null bytes in strings (#462)
  • 52cfe9c fix(NODE-3534): add subtype 0x6 and 0x7 constants on Binary class (#461)
  • dea5e13 test(NODE-3447): serialization of BSON with embedded null bytes in strings (#460)
  • 71c6513 chore(release): 4.5.2
  • 824939a fix(NODE-3021): fix a long standing bug in Decimal128.fromString() (#458)
  • b46ab5f fix(NODE-3582): fix internal marked APIs, add toString methods to Int32 and Double (#457)
  • 6dcd46e chore(release): 4.5.1
  • 1c15155 fix(NODE-3561): umd bundle fails to require util (#455)
  • 5396ab3 chore(release): 4.5.0
  • f4b8a4a chore: sync lockfile with package dependencies (#454)
  • 2330ab1 fix(NODE-3451): fix performance regression from v1 (#451)
  • cb82a80 fix(NODE-3520): global not defined in esm bundles (#452)
  • 0298dd8 feat(NODE-3504): add unambiguous `Timestamp()` constructor overload (#449)
  • d1d8566 chore: address linter failures on master branch (#450)

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@snyk-bot