mongodb-js
diff --git a/‎.depalignrc.json‎
Lines changed: 0 additions & 32 deletions b/‎.depalignrc.json‎
Lines changed: 0 additions & 32 deletions
diff --git a/‎.evergreen/build-dev-release-info.sh‎
Lines changed: 34 additions & 0 deletions b/‎.evergreen/build-dev-release-info.sh‎
Lines changed: 34 additions & 0 deletions
diff --git a/‎.evergreen/buildvariants.in.yml‎
Lines changed: 1 addition & 0 deletions b/‎.evergreen/buildvariants.in.yml‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎.evergreen/buildvariants.yml‎
Lines changed: 35 additions & 0 deletions b/‎.evergreen/buildvariants.yml‎
Lines changed: 35 additions & 0 deletions
diff --git a/‎.evergreen/compass_package.sh‎
Lines changed: 4 additions & 1 deletion b/‎.evergreen/compass_package.sh‎
Lines changed: 4 additions & 1 deletion
diff --git a/‎.evergreen/config.json‎
Lines changed: 12 additions & 0 deletions b/‎.evergreen/config.json‎
Lines changed: 12 additions & 0 deletions
diff --git a/‎.evergreen/create-sbom.sh‎
Lines changed: 25 additions & 0 deletions b/‎.evergreen/create-sbom.sh‎
Lines changed: 25 additions & 0 deletions
diff --git a/‎.evergreen/functions.yml‎
Lines changed: 57 additions & 10 deletions b/‎.evergreen/functions.yml‎
Lines changed: 57 additions & 10 deletions
diff --git a/‎.evergreen/generative-ai-accuracy-test-empty.yml‎
Lines changed: 9 additions & 0 deletions b/‎.evergreen/generative-ai-accuracy-test-empty.yml‎
Lines changed: 9 additions & 0 deletions
diff --git a/‎.evergreen/generative-ai-accuracy-test.yml‎
Lines changed: 2 additions & 2 deletions b/‎.evergreen/generative-ai-accuracy-test.yml‎
Lines changed: 2 additions & 2 deletions
@@ -1,46 +1,17 @@
 {
   "ignore": {
-    "debug": [
-      "^2.2.0",
-      "^4.2.0",
-      "^4.3.1"
-    ],
-    "semver": [
-      "^5.7.2",
-      "^7.6.0"
-    ],
-    "eslint-config-mongodb-js": [
-      "^5.0.3",
-      "^2.2.0",
-      "^3.0.1",
-      "^2.1.0"
-    ],
     "chai": [
       "^4.1.2",
       "^4.2.0",
-      "^3.4.1",
-      "^3.5.0",
       "^4.3.4"
     ],
     "sinon": [
       "^9.0.0",
-      "^1.17.6",
       "^7.2.7",
       "^9.0.2",
       "^9.2.3",
       "^8.1.1"
     ],
-    "uuid": [
-      "^3.1.0",
-      "^3.3.3",
-      "^8.2.0",
-      "^3.3.2",
-      "^3.0.0"
-    ],
-    "fs-extra": [
-      "^8.1.0",
-      "^9.1.0"
-    ],
     "numeral": [
       "^1.5.6"
     ],
@@ -55,9 +26,6 @@
     ],
     "js-yaml": [
       "^3.13.1"
-    ],
-    "bson": [
-      "^4.4.1"
     ]
   }
 }
@@ -0,0 +1,34 @@
+#! /usr/bin/env bash
+
+set -e
+set -x
+
+if [[ "${EVERGREEN_PROJECT}" != "10gen-compass-main" ]]; then
+  echo "Trying to publish main compass (dev build) from ${EVERGREEN_PROJECT} project. Skipping...";
+  exit 0;
+fi
+
+if [[ "${EVERGREEN_BRANCH_NAME}" != "main" ]]; then
+  echo "Trying to publish main compass (dev build) from ${EVERGREEN_BRANCH_NAME} branch. Skipping...";
+  exit 0;
+fi
+
+JSON_CONTENT=$( jq -n \
+  --arg id "$DEV_VERSION_IDENTIFIER" \
+  --arg key "${EVERGREEN_REVISION}_${EVERGREEN_REVISION_ORDER_ID}" \
+  '{version: $id, bucket_key_prefix: $key}'
+)
+
+URL="https://mciuploads.s3.amazonaws.com/${EVERGREEN_PROJECT}/compass/dev/$1"
+DATA=$(curl -sf "${URL}" || echo "$JSON_CONTENT")
+CURRENT_VERSION=$(echo "$DATA" | jq -r '.version')
+
+echo "Comparing versions: $CURRENT_VERSION and $DEV_VERSION_IDENTIFIER"
+LATEST_VERSION=$(npx semver "$CURRENT_VERSION" "$DEV_VERSION_IDENTIFIER" | tail -n1 | xargs)
+
+if [[ "$LATEST_VERSION" == "$CURRENT_VERSION" ]]; then
+  echo "Skipping publishing dev release, version $DEV_VERSION_IDENTIFIER is not newer than $CURRENT_VERSION"
+  exit 0
+fi
+
+echo "$JSON_CONTENT" > "$1"
@@ -17,6 +17,7 @@ buildvariants:
     tasks:
       - name: publish
       - name: publish-packages-next
+      - name: publish-dev-release-info
 
   - name: ubuntu_connectivity_tests
     display_name: Connectivity Tests
 
@@ -17,6 +17,7 @@ buildvariants:
     tasks:
       - name: publish
       - name: publish-packages-next
+      - name: publish-dev-release-info
 
   - name: ubuntu_connectivity_tests
     display_name: Connectivity Tests
@@ -87,6 +88,12 @@ buildvariants:
       - name: test-packaged-app-70x-enterprise
         depends_on: package-compass
 
+      - name: test-packaged-app-80x-community
+        depends_on: package-compass
+
+      - name: test-packaged-app-80x-enterprise
+        depends_on: package-compass
+
       - name: test-packaged-app-latest
         depends_on: package-compass
 
@@ -146,6 +153,12 @@ buildvariants:
       - name: test-packaged-app-70x-enterprise
         depends_on: package-compass
 
+      - name: test-packaged-app-80x-community
+        depends_on: package-compass
+
+      - name: test-packaged-app-80x-enterprise
+        depends_on: package-compass
+
       - name: test-packaged-app-latest
         depends_on: package-compass
 
@@ -201,6 +214,12 @@ buildvariants:
       - name: test-packaged-app-70x-enterprise
         depends_on: package-compass
 
+      - name: test-packaged-app-80x-community
+        depends_on: package-compass
+
+      - name: test-packaged-app-80x-enterprise
+        depends_on: package-compass
+
   - name: macos
     display_name: MacOS x64 11.00 (Test and Package)
     run_on: macos-1100
@@ -234,6 +253,14 @@ buildvariants:
         run_on: macos-1100-gui
         depends_on: package-compass
 
+      - name: test-packaged-app-80x-community
+        run_on: macos-1100-gui
+        depends_on: package-compass
+
+      - name: test-packaged-app-80x-enterprise
+        run_on: macos-1100-gui
+        depends_on: package-compass
+
   - name: macos-arm
     display_name: MacOS arm64 11.00 (Test and Package)
     run_on: macos-1100-arm64
@@ -266,3 +293,11 @@ buildvariants:
       - name: test-packaged-app-70x-enterprise
         run_on: macos-1100-arm64-gui
         depends_on: package-compass
+
+      - name: test-packaged-app-80x-community
+        run_on: macos-1100-arm64-gui
+        depends_on: package-compass
+
+      - name: test-packaged-app-80x-enterprise
+        run_on: macos-1100-arm64-gui
+        depends_on: package-compass
@@ -1,12 +1,15 @@
 #! /usr/bin/env bash
-
 set -e
+set -x
 
 if [[ "$OSTYPE" == "cygwin" ]]; then
   echo "Starting Installer Service..."
   net start MSIServer
 fi
 
+# Ensure .sbom is always created with fresh data
+rm -rvf .sbom && mkdir -pv .sbom
+
 echo "Creating signed release build..."
 npm run package-compass $COMPASS_DISTRIBUTION;
 
 
@@ -131,6 +131,18 @@
             "mongodb_version": "7.0.x-enterprise"
           }
         },
+        {
+          "name": "80x-community",
+          "vars": {
+            "mongodb_version": ">= 8.0.0-rc4"
+          }
+        },
+        {
+          "name": "80x-enterprise",
+          "vars": {
+            "mongodb_version": ">= 8.0.0-rc4-enterprise"
+          }
+        },
         {
           "name": "latest",
           "vars": {
 
@@ -0,0 +1,25 @@
+#! /usr/bin/env bash
+set -e
+set -x
+
+# create SBOM
+CRYPT_SHARED_VERSION=$(cat packages/compass/src/deps/csfle/version)
+
+set +x
+echo "${ARTIFACTORY_PASSWORD}" > /tmp/artifactory_password
+set -x
+
+trap_handler() {
+  rm -f /tmp/artifactory_password
+}
+trap trap_handler ERR EXIT
+
+scp -i "$SIGNING_SERVER_PRIVATE_KEY_CYGPATH" -P "$SIGNING_SERVER_PORT" .sbom/dependencies.json /tmp/artifactory_password "$SIGNING_SERVER_USERNAME"@"$SIGNING_SERVER_HOSTNAME":/tmp/
+ssh -i "$SIGNING_SERVER_PRIVATE_KEY_CYGPATH" -p "$SIGNING_SERVER_PORT" "$SIGNING_SERVER_USERNAME"@"$SIGNING_SERVER_HOSTNAME" \
+  "(cat /tmp/dependencies.json | jq -r '.[] | "'"pkg:npm/" + .name + "@" + .version'"' > /tmp/purls.txt) && \
+  echo "pkg:generic/mongo_crypt_shared@${CRYPT_SHARED_VERSION}" >> /tmp/purls.txt && \
+  (cat /tmp/artifactory_password | docker login artifactory.corp.mongodb.com --username '${ARTIFACTORY_USERNAME}' --password-stdin ; rm -f /tmp/artifactor_password ) && \
+  docker pull artifactory.corp.mongodb.com/release-tools-container-registry-public-local/silkbomb:1.0 && \
+  docker run --rm -v /tmp:/tmp artifactory.corp.mongodb.com/release-tools-container-registry-public-local/silkbomb:1.0 update \
+    --purls /tmp/purls.txt --sbom_out /tmp/sbom.json"
+scp -i "$SIGNING_SERVER_PRIVATE_KEY_CYGPATH" -P "$SIGNING_SERVER_PORT" "$SIGNING_SERVER_USERNAME"@"$SIGNING_SERVER_HOSTNAME":/tmp/{sbom.json,purls.txt} .sbom/
@@ -33,11 +33,13 @@ variables:
     EVERGREEN_IS_PATCH: ${is_patch}
     EVERGREEN_PROJECT: ${project}
     EVERGREEN_REVISION: ${revision}
+    EVERGREEN_REVISION_ORDER_ID: ${revision_order_id}
     EVERGREEN_TASK_ID: ${task_id}
     EVERGREEN_TASK_NAME: ${task_name}
     EVERGREEN_TASK_URL: https://evergreen.mongodb.com/task/${task_id}
     EVERGREEN_VERSION_ID: ${version_id}
     EVERGREEN_WORKDIR: ${workdir}
+    EVERGREEN_CREATED_AT: ${created_at}
     # WARN: This version is behind our electron runtime, but updating it will
     # drop support for some older linux platforms, so we are keeping them out of
     # sync for now
@@ -301,9 +303,6 @@ functions:
           set -e
           # Load environment variables
           eval $(.evergreen/print-compass-env.sh)
-
-          echo "Synchronizing evergreen environment from Compass build tools..."
-
           # Generates and expansion file with build target metadata in packages/compass/expansions.yml
           npm run --workspace mongodb-compass build-info -- ${target_platform} ${target_arch} --format=yaml --flatten ${compass_distribution} --out expansions.yml
     - command: expansions.update
@@ -378,13 +377,14 @@ functions:
 
           # Write the host info so that it can be used by the signing tool
           if [[ $OSTYPE == "cygwin" ]]; then
-            identity_file=$(cygpath -wa "$identity_file")
+            identity_file_ospath=$(cygpath -wa "$identity_file")
           else
-            identity_file=$(eval echo "$identity_file")
+            identity_file_ospath=$(eval echo "$identity_file")
           fi
           cat <<EOL > signing_host_info.yml
           SIGNING_SERVER_HOSTNAME: $hostname
-          SIGNING_SERVER_PRIVATE_KEY: $identity_file
+          SIGNING_SERVER_PRIVATE_KEY: $identity_file_ospath
+          SIGNING_SERVER_PRIVATE_KEY_CYGPATH: $identity_file
           SIGNING_SERVER_USERNAME: $user
           SIGNING_SERVER_PORT: 22
           EOL
@@ -405,13 +405,30 @@ functions:
           COMPASS_DISTRIBUTION: ${compass_distribution}
           SIGNING_SERVER_HOSTNAME: ${SIGNING_SERVER_HOSTNAME}
           SIGNING_SERVER_PRIVATE_KEY: ${SIGNING_SERVER_PRIVATE_KEY}
+          SIGNING_SERVER_PRIVATE_KEY_CYGPATH: ${SIGNING_SERVER_PRIVATE_KEY_CYGPATH}
           SIGNING_SERVER_USERNAME: ${SIGNING_SERVER_USERNAME}
           SIGNING_SERVER_PORT: ${SIGNING_SERVER_PORT}
         script: |
           set -e
-
+          # Load environment variables
           eval $(.evergreen/print-compass-env.sh)
           .evergreen/compass_package.sh
+    - command: shell.exec
+      params:
+        working_dir: src
+        shell: bash
+        env:
+          ARTIFACTORY_USERNAME: ${artifactory_username}
+          ARTIFACTORY_PASSWORD: ${artifactory_password}
+          SIGNING_SERVER_HOSTNAME: ${SIGNING_SERVER_HOSTNAME}
+          SIGNING_SERVER_PRIVATE_KEY: ${SIGNING_SERVER_PRIVATE_KEY}
+          SIGNING_SERVER_PRIVATE_KEY_CYGPATH: ${SIGNING_SERVER_PRIVATE_KEY_CYGPATH}
+          SIGNING_SERVER_USERNAME: ${SIGNING_SERVER_USERNAME}
+          SIGNING_SERVER_PORT: ${SIGNING_SERVER_PORT}
+        script: |
+          set -e
+
+          .evergreen/create-sbom.sh
 
   publish:
     - command: shell.exec
@@ -424,12 +441,28 @@ functions:
           set -e
           # Load environment variables
           eval $(.evergreen/print-compass-env.sh)
-          if [[ "${project}" == "10gen-compass-main" ]]; then
-            export npm_config_dry_run=true
-          fi
           echo "Uploading release assets to S3 and GitHub if needed..."
           npm run --workspace mongodb-compass upload
 
+  publish-dev-release-info:
+    - command: shell.exec
+      params:
+        working_dir: src
+        shell: bash
+        env:
+          <<: *compass-env
+        script: |
+          eval $(.evergreen/print-compass-env.sh)
+          .evergreen/build-dev-release-info.sh release.json
+    - command: s3.put
+      params:
+        <<: *save-artifact-params-public
+        local_file: src/release.json
+        remote_file: ${project}/compass/dev/release.json
+        content_type: application/json
+        display_name: release.json
+        optional: true
+
   get-packaged-app:
     - command: s3.get
       params:
@@ -738,6 +771,20 @@ functions:
         remote_file: ${project}/${revision}_${revision_order_id}/${linux_tar_sign_filename}
         content_type: application/pgp-signature
         optional: true
+    - command: s3.put
+      params:
+        <<: *save-artifact-params-public
+        local_file: src/.sbom/purls.txt
+        remote_file: ${project}/${revision}_${revision_order_id}/${task_id}/purls.txt
+        content_type: text/plain
+        optional: true
+    - command: s3.put
+      params:
+        <<: *save-artifact-params-public
+        local_file: src/.sbom/sbom.json
+        remote_file: ${project}/${revision}_${revision_order_id}/${task_id}/sbom.json
+        content_type: application/json
+        optional: true
 
   get-all-artifacts:
     - command: shell.exec
 
@@ -0,0 +1,9 @@
+# This evergreen .yml is intentionally left empty.
+# We want the compass-generative-ai-accuracy evergreen project to run
+# daily on the latest commit. This file is here so that we have a
+# .yml config to point the evergreen project to so that
+# it can uses the most recent commits when the daily run happens.
+
+# The .yml that runs those tests is `generative-ai-accuracy-test.yml`.
+# We don't want it to run on every commit as that would be too many
+# requests to our ai model (expensive).
@@ -1,6 +1,6 @@
 # This evergreen .yml is only used in periodic builds.
-# We don't want it to run on every patch as that would be too many
-# requests to our ai model (expensive).
+# We don't want it to run on every commit as that would be
+# too many requests to our ai model (expensive).
 
 unset_function_vars: true
 stepback: false