Merge branch 'main' into chore/gh-actions-reorg-for-install-tests

Author: tculig

.github/dependabot.yml

@@ -6,6 +6,10 @@ updates:
     directory: /
     schedule:
       interval: daily
+    cooldown:
+      default-days: 7
+      include:
+        - "*"
     allow:
       - dependency-name: mongodb
       - dependency-name: bson

.github/workflows/actions/test-and-build/action.yaml

@@ -68,6 +68,7 @@ runs:
     - name: Run Tests
       env:
         NODE_OPTIONS: "--max_old_space_size=4096"
+        MDB_IS_TEST: "true"
       run: |
         npm run test
       shell: bash
@@ -118,30 +119,31 @@ runs:
       run: |
         npm run snyk-test > /dev/null 2>&1
 
-    - name: Create Jira Tickets
-      if: >
-        runner.os == 'Linux' &&
-        (
-          github.event_name == 'push' && github.ref == 'refs/heads/main' ||
-          github.event_name == 'workflow_dispatch' ||
-          github.event_name == 'schedule'
-        )
-      shell: bash
-      env:
-        JIRA_API_TOKEN: ${{ inputs.JIRA_API_TOKEN }}
-        JIRA_BASE_URL: "https://jira.mongodb.org"
-        JIRA_PROJECT: "VSCODE"
-        JIRA_VULNERABILITY_BUILD_INFO: "- [GitHub Run|https://github.com/mongodb-js/vscode/actions/runs/${{github.run_id}}/jobs/${{github.job}}]"
-      run: |
-        npm run create-vulnerability-tickets > /dev/null
+    # TODO(VSCODE-706): Fix Snyk vuln ticket generation
+    # - name: Create Jira Tickets
+    #   if: >
+    #     runner.os == 'Linux' &&
+    #     (
+    #       github.event_name == 'push' && github.ref == 'refs/heads/main' ||
+    #       github.event_name == 'workflow_dispatch' ||
+    #       github.event_name == 'schedule'
+    #     )
+    #   shell: bash
+    #   env:
+    #     JIRA_API_TOKEN: ${{ inputs.JIRA_API_TOKEN }}
+    #     JIRA_BASE_URL: "https://jira.mongodb.org"
+    #     JIRA_PROJECT: "VSCODE"
+    #     JIRA_VULNERABILITY_BUILD_INFO: "- [GitHub Run|https://github.com/mongodb-js/vscode/actions/runs/${{github.run_id}}/jobs/${{github.job}}]"
+    #   run: |
+    #     npm run create-vulnerability-tickets > /dev/null
 
-    - name: Generate Vulnerability Report (Fail on >= High)
-      if: runner.os == 'Linux'
-      continue-on-error: ${{ github.event_name == 'pull_request' }}
-      shell: bash
-      run: |
-        # The standard output is suppressed since Github Actions logs are
-        # available for everyone with read access to the repo, which is everyone that is
-        # logged in for public repos.
-        # This command is only here to fail on failures for `main` and tags.
-        npm run generate-vulnerability-report > /dev/null
+    # - name: Generate Vulnerability Report (Fail on >= High)
+    #   if: runner.os == 'Linux'
+    #   continue-on-error: ${{ github.event_name == 'pull_request' }}
+    #   shell: bash
+    #   run: |
+    #     # The standard output is suppressed since Github Actions logs are
+    #     # available for everyone with read access to the repo, which is everyone that is
+    #     # logged in for public repos.
+    #     # This command is only here to fail on failures for `main` and tags.
+    #     npm run generate-vulnerability-report > /dev/null

.github/workflows/dependabot-pr.yml

@@ -0,0 +1,22 @@
+---
+name: Dependabot PR
+on:
+  pull_request_target:
+    types: [opened]
+    branches:
+      - main
+
+permissions:
+  pull-requests: write
+
+jobs:
+  enable-auto-merge-on-dependabot-pr:
+    name: Enable auto-merge for Dependabot PRs
+    if: github.event.pull_request.user.login == 'dependabot[bot]'
+    runs-on: ubuntu-latest
+    steps:
+      - name: Enable auto-merge for Dependabot PRs
+        run: gh pr merge --auto --squash "$PR_URL"
+        env:
+          PR_URL: ${{github.event.pull_request.html_url}}
+          GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}}

.github/workflows/draft-release.yaml

@@ -129,6 +129,7 @@ jobs:
           GARASIGN_USERNAME: ${{ secrets.GARASIGN_USERNAME }}
           SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
           JIRA_API_TOKEN: ${{ secrets.JIRA_API_TOKEN }}
+          MDB_IS_TEST: "true"
 
   test:
     name: Test

.github/workflows/test-and-build-from-fork.yaml

@@ -1,11 +1,10 @@
 name: Test and Build (from fork)
 on:
-  pull_request_target:
+  pull_request:
     branches:
       - main
 permissions:
-  contents: write
-  pull-requests: write
+  contents: read
 
 jobs:
   build-and-package:
@@ -54,10 +53,6 @@ jobs:
     steps:
       - name: Checkout
         uses: actions/checkout@v4
-        with:
-          fetch-depth: 0
-          ref: ${{github.event.pull_request.head.ref}}
-          repository: ${{github.event.pull_request.head.repo.full_name}}
 
       - name: Setup Node.js Environment
         uses: actions/setup-node@v4

.github/workflows/test-and-build.yaml

@@ -71,3 +71,11 @@ jobs:
         uses: ./.github/workflows/actions/run-tests
         with:
           SEGMENT_KEY: ${{ secrets.SEGMENT_KEY_PROD }}
+          ARTIFACTORY_HOST: ${{ secrets.ARTIFACTORY_HOST }}
+          ARTIFACTORY_PASSWORD: ${{ secrets.ARTIFACTORY_PASSWORD }}
+          ARTIFACTORY_USERNAME: ${{ secrets.ARTIFACTORY_USERNAME }}
+          GARASIGN_PASSWORD: ${{ secrets.GARASIGN_PASSWORD }}
+          GARASIGN_USERNAME: ${{ secrets.GARASIGN_USERNAME }}
+          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
+          JIRA_API_TOKEN: ${{ secrets.JIRA_API_TOKEN }}
+          MDB_IS_TEST: "true"

.gitignore

@@ -11,3 +11,5 @@ constants.json
 .eslintcache
 .sbom
 src/test/ai-accuracy-tests/test-results.html
+.yalc
+yalc.lock

.vscode/launch.json

@@ -53,10 +53,11 @@
         "--extensionTestsPath=${workspaceFolder}/out/test/suite"
       ],
       "env": {
-        "MOCHA_GREP": "${input:mochaGrep}"
+        "MOCHA_GREP": "${input:mochaGrep}",
+        "MDB_IS_TEST": "true"
       },
       "outFiles": ["${workspaceFolder}/out/**/*.js"],
-      "preLaunchTask": "npm: compile:extension",
+      "preLaunchTask": "npm: compile:extension"
     }
   ],
   "inputs": [

CHANGELOG.md

@@ -1,5 +1,36 @@
 # Change Log
 
+## [v1.14.2](https://github.com/mongodb-js/vscode/releases/tag/v1.14.2) - 2025-10-07
+
+## What's Changed
+* fix: snyk will now scan vscode project by @himanshusinghs in https://github.com/mongodb-js/vscode/pull/1136
+* chore: update CHANGELOG.md by @mongodb-devtools-bot[bot] in https://github.com/mongodb-js/vscode/pull/1148
+* chore: update mongodb-mcp-server to fix yargs-parser problem by @himanshusinghs in https://github.com/mongodb-js/vscode/pull/1153
+* chore: disable snyk vuln ticket generation by @himanshusinghs in https://github.com/mongodb-js/vscode/pull/1154
+
+
+**Full Changelog**: https://github.com/mongodb-js/vscode/compare/v1.14.1...v1.14.2
+
+
+## [v1.14.1](https://github.com/mongodb-js/vscode/releases/tag/v1.14.1) - 2025-10-06
+
+## What's Changed
+* chore: update CHANGELOG.md by @mongodb-devtools-bot[bot] in https://github.com/mongodb-js/vscode/pull/1121
+* fix: add hosting_mode to mcp telemetry by @nirinchev in https://github.com/mongodb-js/vscode/pull/1134
+* chore: update mongosh by @gagik in https://github.com/mongodb-js/vscode/pull/1130
+* chore(deps-dev): bump mongodb-runner from 5.9.2 to 5.10.0 by @dependabot[bot] in https://github.com/mongodb-js/vscode/pull/1139
+* chore(deps-dev): bump @mongodb-js/signing-utils from 0.4.0 to 0.4.3 by @dependabot[bot] in https://github.com/mongodb-js/vscode/pull/1141
+* chore(deps-dev): bump @mongodb-js/oidc-mock-provider from 0.11.3 to 0.11.4 by @dependabot[bot] in https://github.com/mongodb-js/vscode/pull/1140
+* fix: disable MCP auto start and instead request on first load and new connection attempts VSCODE-704 by @himanshusinghs in https://github.com/mongodb-js/vscode/pull/1132
+* chore(deps): bump mongodb from 6.19.0 to 6.20.0 in the driver group by @dependabot[bot] in https://github.com/mongodb-js/vscode/pull/1142
+* chore(deps): bump @mongodb-js/mongodb-ts-autocomplete from 0.4.7 to 0.4.8 by @dependabot[bot] in https://github.com/mongodb-js/vscode/pull/1143
+* chore(deps): bump @mongodb-js/connection-info from 0.17.1 to 0.21.0 by @dependabot[bot] in https://github.com/mongodb-js/vscode/pull/1138
+* chore: bump mongodb-mcp-server to 1.0.2 by @himanshusinghs in https://github.com/mongodb-js/vscode/pull/1146
+
+
+**Full Changelog**: https://github.com/mongodb-js/vscode/compare/v1.14.0...v1.14.1
+
+
 ## [v1.14.0](https://github.com/mongodb-js/vscode/releases/tag/v1.14.0) - 2025-09-16
 
 ## What's Changed

README.md

@@ -118,7 +118,6 @@ _Note: To use the MongoDB Participant, you must have the [GitHub Copilot](https:
 | `mdb.useDefaultTemplateForPlayground` | Choose whether to use the default template for playground files or to start with an empty playground editor. | `true` |
 | `mdb.uniqueObjectIdPerCursor` | The default behavior is to generate a single ObjectId and insert it on all cursors. Set to true to generate a unique ObjectId per cursor instead. | `false` |
 | `mdb.sendTelemetry` | Opt-in and opt-out for diagnostic and telemetry collection.  | `true`  |
-| `mdb.confirmRunCopilotCode` | Show a confirmation message before running code generated by the MongoDB participant.  | `true`  |
 | `mdb.useSampleDocsInCopilot` | Enable sending sample field values with the VSCode copilot chat @MongoDB participant /query command.  | `false`  |
 
 ## Additional Settings