MongoDB Node.js driver version 5.8.0 brings several updates compared to the previous stable version 5.7.0. A notable change is the removal of saslprep from both dependencies and optionalDependencies. Instead, version 5.8.0 introduces @mongodb-js/saslprep as an optionalDependency, suggesting a shift towards a more modular and potentially more controlled SASL preparation implementation.
Another change is in peer dependencies. The kerberos peer dependency saw a change from "^2.0.1" in 5.7.0 to "^1.0.0 || ^2.0.0" in 5.8.0, while "@aws-sdk/credential-providers" shifted from "^3.201.0" to "^3.188.0". These peer dependency adjustments might impact compatibility or require adjustments in projects that rely on specific versions of these peer dependencies. Developers should carefully review these changes when upgrading.
Interestingly, the core dependencies like bson, socks, and mongodb-connection-string-url remain consistent, indicating stability in foundational components. The array of devDependencies largely overlaps, with minor version bumps in some packages like @octokit/core. This indicates ongoing efforts to maintain a modern and robust development environment for the library, which translates to better maintainability and newer features on the long run. Finally, the unpacked size of the package saw some change in size from 2663213 bytes to 2667876 bytes, without any changes on filecount.
The are not vulnerabilities for the version 5.8.0 of the package mongodb
