[Snyk] Upgrade mongodb from 3.2.3 to 3.7.4 #31

jhm164 · 2023-11-23T14:22:31Z

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade mongodb from 3.2.3 to 3.7.4.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 46 versions ahead of your current version.
The recommended version was released 5 months ago, on 2023-06-21.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Internal Property Tampering SNYK-JS-BSON-561052	416/1000 Why? CVSS 8.1	No Known Exploit
	Internal Property Tampering SNYK-JS-BSON-6056525	416/1000 Why? CVSS 8.1	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: mongodb

3.7.4 - 2023-06-21
The MongoDB Node.js team is pleased to announce version 3.7.4 of the mongodb package!

Release Highlights

This release fixes a bug that throws a type error when SCRAM-SHA-256 is used with saslprep in a webpacked environment.

3.7.4 (2023-06-21)

Bug Fixes
- NODE-3711: retry txn end on retryable write (#3047) (1595140)
- NODE-5355: prevent error when saslprep is not a function (#3733) (152425a)
Documentation
- Reference
- API
- Changelog
We invite you to try the mongodb library immediately, and report any issues to the NODE project.
3.7.3 - 2021-10-20
3.7.2 - 2021-10-05
3.7.1 - 2021-09-14
3.7.0 - 2021-08-31
3.6.12 - 2021-08-30
3.6.11 - 2021-08-05
3.6.10 - 2021-07-06
3.6.9 - 2021-05-26
3.6.8 - 2021-05-21
3.6.7 - 2021-05-18
3.6.6 - 2021-04-06
3.6.5 - 2021-03-16
3.6.4 - 2021-02-02
3.6.3 - 2020-11-06
3.6.2 - 2020-09-10
3.6.1 - 2020-09-02
3.6.0 - 2020-07-30
3.6.0-beta.0 - 2020-04-14
3.5.11 - 2020-09-10
3.5.10 - 2020-07-30
3.5.9 - 2020-06-12
3.5.8 - 2020-05-28
3.5.7 - 2020-04-29
3.5.6 - 2020-04-14
3.5.5 - 2020-03-11
3.5.4 - 2020-02-25
3.5.3 - 2020-02-12
3.5.2 - 2020-01-20
3.5.1 - 2020-01-17
3.5.0 - 2020-01-14
3.4.1 - 2019-12-19
3.4.0 - 2019-12-10
3.3.5 - 2019-11-26
3.3.4 - 2019-11-11
3.3.4-rc0 - 2019-11-06
3.3.3 - 2019-10-16
3.3.2 - 2019-08-28
3.3.1 - 2019-08-23
3.3.0 - 2019-08-13
3.3.0-beta2 - 2019-07-18
3.3.0-beta1 - 2019-06-18
3.2.7 - 2019-06-04
3.2.6 - 2019-05-24
3.2.5 - 2019-05-17
3.2.4 - 2019-05-08
3.2.3 - 2019-04-05

from mongodb GitHub release notes

Commit messages

Package name: mongodb

c2b6da1 chore(release): 3.7.4
152425a fix(NODE-5355): prevent error when saslprep is not a function (#3733)
1595140 fix(NODE-3711): retry txn end on retryable write (#3047)
9b980c4 chore(NODE-3736): fix drivers tools cloning (#3025)
b42e8b3 chore(release): 3.7.3
428e6d3 fix(NODE-3515): do proper opTime merging in bulk results (#3011)
564b0d7 test(NODE-3606): legacy and new versions of the CSFLE library (#3002)
7c5a7bb chore(release): 3.7.2
ec23d63 chore(NODE-3622): bump optional-require for additional yarn berry pnp support (#2989)
28f721d chore(release): 3.7.1
910c564 feat(NODE-3424): use hello for monitoring commands (#2964)
44df7d7 chore(release): 3.7.0
1a76618 fix: versioned api low node compat fix (#2970)
7602f68 docs(NODE-3406): add versioned api examples (#2969)
a07aa56 test(NODE-3409): support AWS temp credentials in CSFLE tests (#2968)
eae0e05 chore(NODE-3303): deprecate md5 hash and isConnected (#2960)
77ab63e test(NODE-3387): correctly extract findOneX values in unified operations (#2966)
96c8ab4 fix(NODE-3377): driver should allow arbitrary explain levels (#2961)
4c25984 chore: sync 3.6 changes to 3.7 (#2963)
e5975af fix(NODE-3463): pass explain error through to callback (#2949)
238a4b0 fix(NODE-3290): versioned api validation and tests (#2869)
91a2fc9 Merge remote-tracking branch 'origin/3.6' into 3.7
6ee945e chore(NODE-3316): add author info and update bug url in package.json (#2887)
ecc930b test(NODE-3381): command monitoring redaction tests (#2873)