Skip to content

chore(deps): bump mongodb from 3.4.1 to 3.5.0 #653

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
dependabot wants to merge 1 commit into
base: main
Choose a base branch
from
Open

chore(deps): bump mongodb from 3.4.1 to 3.5.0 #653

dependabot wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 15, 2026

Bumps mongodb from 3.4.1 to 3.5.0.

Release notes

Sourced from mongodb's releases.

v3.5.0

The MongoDB Rust driver team is pleased to announce the v3.5.0 release of the mongodb crate, now available for download from crates.io.

Highlighted Changes

SOCKS5 Proxy Support

3.5.0 includes the optional socks5-proxy feature, which enables connecting to the database via a SOCKS5 proxy. This can be configured either with the proxyHost, proxyPort, proxyUsername, and proxyPassword connection string options or the ClientOptions::socks5_proxy field.

Raw Batch Cursors

This release adds support for iterating over the raw document batches returned by the server for cursors rather than individual deserialized values. For some applications, this can enable significant performance improvements; see the module documentation for more details.

AWS Authentication Property Deprecation

Specifying AWS authentication properties via the username and password in URI strings and the AWS_SESSION_TOKEN field of the auth mechanism properties doc is deprecated; using these is almost never the correct setup and can lead to the driver losing connectivity. This functionality will be removed in the next major version of the driver.

Full Release Notes

Impactful changes are listed below; for a complete list of changes see this GitHub query.

New Features

  • RUST-1054 SOCKS5 Proxy Support (#1550)
  • RUST-2300 Provide a raw batched cursor mode for all cursor-returning actions

Improvements

  • RUST-2303 extend ALLOWED_HOSTS (#1544)
  • RUST-2308 Derive Clone for ConnectionString (#1546) (thanks @​jeroenvervaeke!)
  • RUST-2309 Include message in display for custom errors containing strings
  • RUST-2279 Add snapshot_time option for snapshot sessions (#1555)
  • RUST-2321 Deprecate the socketTimeoutMS option (#1582)
  • RUST-2310 Deprioritize servers in server selection for all topologies (#1576)

Bugfixes

  • RUST-2304 Add workarounds for bulk write server bugs (#1551)
Commits
  • f8e0886 release v3.5.0 (#1585)
  • a6ef647 RUST-2310 Deprioritize servers in server selection for all topologies (#1576)
  • ee53f31 RUST-2321 Deprecate the socketTimeoutMS option (#1582)
  • 62f1893 chore: Update SBOM (#1581)
  • 88e8e28 RUST-2327 Update windows host versions (#1580)
  • b889e9d Bump the rust-dependencies group with 19 updates (#1579)
  • 4459abe RUST-2300 Provide a raw batched cursor mode for all cursor-returning actions ...
  • 1f6ef1b RUST-2328 Disable handshake metadata tests for compression (#1578)
  • aa21c7b RUST-2327 Temporarily disable mongod-latest tests on windows (#1577)
  • 11e4013 RUST-2295 fix wildcard dev-dependencies (#1575)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
chore(deps): bump mongodb from 3.4.1 to 3.5.0
72aef41 
Bumps [mongodb](https://github.com/mongodb/mongo-rust-driver) from 3.4.1 to 3.5.0.
- [Release notes](https://github.com/mongodb/mongo-rust-driver/releases)
- [Commits](mongodb/mongo-rust-driver@v3.4.1...v3.5.0)

---
updated-dependencies:
- dependency-name: mongodb
  dependency-version: 3.5.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file rust Pull requests that update Rust code labels Jan 15, 2026
@codspeed-hq
Copy link

codspeed-hq bot commented Jan 15, 2026

Merging this PR will not alter performance

✅ 87 untouched benchmarks

Comparing dependabot/cargo/mongodb-3.5.0 (72aef41) with main (a749ae8)

Open in CodSpeed

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update Rust code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant