Bump bson from 1.2.4 to 4.9.4

[dependabot[bot]]

Bumps bson from 1.2.4 to 4.9.4.

Release notes

Sourced from bson's releases.

4.9.4

This patch release improves diagnostics when objects of unserializable classes are attempted to be serialized to BSON.

4.9.3

This bug fix release repairs a segfault that occurred when calling GC.compact while using the library.

4.9.2

This bugfix release repairs inability to deserialize BSON::Regexp::Raw instances from YAML.

4.9.1

This patch release addresses a packaging issue in 4.9.0 (the library was unusable on JRuby in Java 8 environments, and neither MRI nor JRuby gems were signed).

4.9.0

The gems for this release are not signed. Please use version 4.9.1 instead.

This minor release adds several validations when decoding BSON.

Some decodable but technically invalid documents will be rejected. Some documents that are not decodable will be flagged as such earlier in the decoding process.

4.8.2

This patch release fixes the following issues related to Extended JSON (de)serialization:

• RUBY-2146 Support older driver versions for BSON deserialization
• RUBY-2158 Return UTC times when parsing extended json

4.8.1

This patch release fixes two issues discovered in the 4.8.0 release:

• RUBY-2146 Support older driver versions for BSON deserialization
• RUBY-2145 bson 4.8.0 rounds Time during serialization to bson/extended json

4.8.0

This release of bson-ruby adds Extended JSON support for reading and writing.

4.7.1

This patch release in the 4.7 series fixes Windows build. The following tickets have been closed:

• RUBY-2092 bson-ruby does not build on Windows

4.7.0

This minor release of BSON Ruby library fixes an issue with BSON::Binary serialization when the string given to the Binary constructor was frozen. It also adds experimental methods to convert data to and from the legacy UUID representations.

The following tickets have been resolved:

• RUBY-2043 BSON::Binary fails to serialize if data is frozen
• RUBY-2039 UUID representation proof of concept

4.6.0

This minor release in the 4.x series improves reliability and diagnostics of the library when serializing data to BSON, improves edge case handling and expands user documentation around data serialization.

The following notable changes were made:

Changelog

Sourced from bson's changelog.

BSON Changelog

3.2.6

Bug Fixes

• #44 Fixed regexp deserialization in conjunction with SSL io. (Niels Ganser)

3.2.5

Bug Fixes

• RUBY-1024 Fixed Hash#merge only to yield when keys exist in both hashes. (Agis Anastasopoulos)

3.2.4

Bug Fixes

• RUBY-1019 Performace improvements on deserialization.

3.2.3

Bug Fixes

• #41 Normalizing arrays does not mutate. (Agis Anastasopoulos)

• #40 Added big endian support. (Jeff Blight)

3.2.1

Bug Fixes

#39 Fixed MD5 hashing of hostname in c extension. (James Hudon)

3.2.0

Bug Fixes

• RUBY-950 Don't encode to UTF-8 in Binary#to_bson, only force BINARY encoding.

New features

• Add BSON.ObjectId constructor for instantiating an ObjectId from a String. Update ObjectId#inspect to print out a string that can be evaluated into the corresponding ObjectId. (Tony Ta)

3.1.2

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.