chore(deps): bump mongodb, @mikro-orm/mongodb and mongoose

[dependabot]

Bumps mongodb to 5.8.1 and updates ancestor dependencies mongodb, @mikro-orm/mongodb and mongoose. These dependencies need to be updated together.

Updates mongodb from 5.6.0 to 5.8.1

Release notes

Sourced from mongodb's releases.

v5.8.1

5.8.1 (2023-08-23)

The MongoDB Node.js team is pleased to announce version 5.8.1 of the mongodb package!

Release Notes

Import of saslprep updated to correct library.

Fixes the import of saslprep to be the correct @mongodb-js/saslprep library.

Bug Fixes

• NODE-5572: fix saslprep import (#3837) (250dc21)

Documentation

• Reference
• API
• Changelog

We invite you to try the mongodb library immediately, and report any issues to the NODE project.

v5.8.0

5.8.0 (2023-08-21)

The MongoDB Node.js team is pleased to announce version 5.8.0 of the mongodb package!

Release Notes

The AutoEncrypter interface has been deprecated

The AutoEncrypter interface was used internally but accidentally made public in the 4.x version of the driver. It is now deprecated and will be made internal in the next major release.

Kerberos support for 1.x and 2.x

Moves the kerberos dependency back to ^1.0.0 || ^2.0.0 to indicate support for both 1.x and 2.x. Support for 1.x is removed in 6.0.

Fixed accidental deprecation warning

Because of internal options handling, a deprecation was emitted for tlsCertificateFile when using tlsCertificateKeyFile. That has been corrected.

Remove credential availability on ConnectionPoolCreatedEvent

... (truncated)

Changelog

Sourced from mongodb's changelog.

5.8.1 (2023-08-23)

Bug Fixes

• NODE-5572: fix saslprep import (#3837) (250dc21)

5.8.0 (2023-08-21)

Features

• NODE-5399: use mongodb-js/saslprep instead of saslprep (#3818) (c0d3927)
• NODE-5429: deprecate the AutoEncrypter interface (#3764) (9bb0d95)
• NODE-5465,NODE-5538: lower @aws-sdk/credential-providers version to 3.188.0 and zstd to ^1.0.0 (#3821) (39ff81d)
• NODE-5489: update kerberos dependency (8c25d6d)

Bug Fixes

• NODE-5489: set kerberos compatibility to ^1.0.0 || ^2.0.0 (#3803) (c3b35b3)
• NODE-5495: do not emit deprecation warning when tlsCertificateKeyFile is specified and tlsCertificateFile is not (#3810) (e81d4a2)
• NODE-5537: remove credentials from ConnectionPoolCreatedEvent options (#3813) (4cf1e96)

5.7.0 (2023-07-06)

Features

• NODE-4929: Add OIDC Azure workflow (#3670) (b3482f3)
• NODE-5008: add zstd and kerberos to peer deps (#3691) (9561f32)
• NODE-5241: add option to return modified document (#3710) (d9c2600)
• NODE-5243: add change stream split event (#3745) (1c84f82)
• NODE-5274: deprecate write concern options (#3752) (1f880ea)
• NODE-5287: deprecate ssl options (#3743) (f9b5677)
• NODE-5319: mark search index api public (#3741) (c015e54)
• NODE-5407: update bson to 5.4.0 (#3754) (6a574cf)

Bug Fixes

• NODE-4977: load snappy lazily (#3726) (865e658)
• NODE-5102: listDatabases nameOnly setting is sent as NaN (#3742) (b97132e)
• NODE-5289: prevent scram auth from throwing TypeError if saslprep is not a function (#3727) (e006347)
• NODE-5374: do not apply cursor transform in Cursor.hasNext (#3746) (0668cd8)

Commits

• 435f88b chore(5.x): release 5.8.1 [skip-ci] (#3839)
• 250dc21 fix(NODE-5572): fix saslprep import (#3837)
• d6eac31 docs(NODE-5562): update upcoming crl option changes (#3836)
• 43673fa chore(5.x): release 5.8.0 [skip-ci] (#3825)
• 4b2fc79 docs: fix cutoff sentence on CommandStartedEvent (#3828)
• 39ff81d feat(NODE-5465,NODE-5538): lower @aws-sdk/credential-providers version to 3...
• e1af343 chore: update release automation scripts 5.x (#3823)
• c0d3927 feat(NODE-5399): use mongodb-js/saslprep instead of saslprep (#3818)
• 4cf1e96 fix(NODE-5537): remove credentials from ConnectionPoolCreatedEvent options (#...
• e81d4a2 fix(NODE-5495): do not emit deprecation warning when tlsCertificateKeyFile is...
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by dbx-node, a new releaser for mongodb since your current version.

Updates @mikro-orm/mongodb from 5.7.13 to 5.8.1

Release notes

Sourced from @​mikro-orm/mongodb's releases.

v5.8.1

5.8.1 (2023-09-12)

Bug Fixes

• core: ensure entity is not in persist stack after em.insert/Many() is called (94eed5e), closes #4692
• core: ensure merging of data to already loaded entities won't fail in some cases (f6e8204), closes #4688
• core: fix merging of collections loaded via joined strategy (b4a0260), closes #4694
• core: try to fix merging of large collections loaded via joined strategy (faae84e), closes #4694

v5.8.0

5.8.0 (2023-09-10)

https://mikro-orm.io/blog/mikro-orm-5-8-released

Bug Fixes

• core: default baseUrl value to '.' when registering ts-node (#4680) (cc0fc5f), closes #4679
• core: ensure partial loading respects advanced mapped type methods (72554fd), closes #4622
• core: fix assigning collection items with updateNestedEntities: false (e1bfd20)
• core: fix metadata cache for @Check() with callback signature (44d973e), closes #4505
• core: fix removing entity that has an inverse relation with M:1 owner property (fbed4a6), closes #4578
• core: ignore null values of unknown properties in assign() (a600f55), closes #4566
• core: map property names to column names in qb.onConflict() (e38d126), closes #4483
• core: remove old items from 1:m collections via set() even if not initialized (b03e165)
• core: respect explicit schema name of pivot tables (af74491), closes #4516
• core: respect filters with joined loading strategy (#4683) (847c35a), closes #704 #2440
• core: support calling em.findAndCount() on virtual entities with orderBy (7f328ac), closes #4628
• core: support calling em.insertMany() with empty array (2f65bc8), closes #4640
• core: use join on conditions for populateWhere (#4682) (99177cc), closes #3871
• entity-generator: respect precision and scale in numeric column type (3a52c39)
• mysql: fix extra updates on entities with non-primary autoincrement property (5d6ebe3), closes #4577
• query-builder: apply join condition to the target entity in M:N relations (c78d812), closes #4644
• query-builder: make QBFilterQuery type more strict (755ef67)
• schema: respect columnType on enum properties (#4601) (0eae590)

Features

• cli: add --drop-db flag to migration:fresh and schema:fresh (cf1db80), closes #4569
• core: add clear option to em.transactional() (01d1ad7)
• core: add Collection.isEmpty() method (#4599) (2d8d506)
• core: add Collection.slice() method (#4608) (7c99c37)
• core: add Collection helpers map/filter/reduce/exists/findFirst/indexBy (3ba33ac), closes #4592
• core: allow disabling duplicate entities discovery validation (#4618) (3ff0dda)
• core: allow enabling result cache globally (5876c99), closes #4656
• core: allow fine-grained control over em.upsert() (#4669) (ab0ddee), closes #4325 #4602
• core: allow global config option for disableIdentityMap (ef32b14), closes #4653
• core: respect batchSize in em.upsertMany() (4a21c33), closes #4421

... (truncated)

Changelog

Sourced from @​mikro-orm/mongodb's changelog.

5.8.1 (2023-09-12)

Bug Fixes

• core: ensure entity is not in persist stack after em.insert/Many() is called (94eed5e), closes #4692
• core: ensure merging of data to already loaded entities won't fail in some cases (f6e8204), closes #4688
• core: fix merging of collections loaded via joined strategy (b4a0260), closes #4694
• core: try to fix merging of large collections loaded via joined strategy (faae84e), closes #4694

5.8.0 (2023-09-10)

Bug Fixes

• core: default baseUrl value to '.' when registering ts-node (#4680) (cc0fc5f), closes #4679
• core: ensure partial loading respects advanced mapped type methods (72554fd), closes #4622
• core: fix assigning collection items with updateNestedEntities: false (e1bfd20)
• core: fix metadata cache for @Check() with callback signature (44d973e), closes #4505
• core: fix removing entity that has an inverse relation with M:1 owner property (fbed4a6), closes #4578
• core: ignore null values of unknown properties in assign() (a600f55), closes #4566
• core: map property names to column names in qb.onConflict() (e38d126), closes #4483
• core: remove old items from 1:m collections via set() even if not initialized (b03e165)
• core: respect explicit schema name of pivot tables (af74491), closes #4516
• core: respect filters with joined loading strategy (#4683) (847c35a), closes #704 #2440
• core: support calling em.findAndCount() on virtual entities with orderBy (7f328ac), closes #4628
• core: support calling em.insertMany() with empty array (2f65bc8), closes #4640
• core: use join on conditions for populateWhere (#4682) (99177cc), closes #3871
• entity-generator: respect precision and scale in numeric column type (3a52c39)
• mysql: fix extra updates on entities with non-primary autoincrement property (5d6ebe3), closes #4577
• query-builder: apply join condition to the target entity in M:N relations (c78d812), closes #4644
• query-builder: make QBFilterQuery type more strict (755ef67)
• schema: respect columnType on enum properties (#4601) (0eae590)

Features

• cli: add --drop-db flag to migration:fresh and schema:fresh (cf1db80), closes #4569
• core: add clear option to em.transactional() (01d1ad7)
• core: add Collection.isEmpty() method (#4599) (2d8d506)
• core: add Collection.slice() method (#4608) (7c99c37)
• core: add Collection helpers map/filter/reduce/exists/findFirst/indexBy (3ba33ac), closes #4592
• core: allow disabling duplicate entities discovery validation (#4618) (3ff0dda)
• core: allow enabling result cache globally (5876c99), closes #4656
• core: allow fine-grained control over em.upsert() (#4669) (ab0ddee), closes #4325 #4602
• core: allow global config option for disableIdentityMap (ef32b14), closes #4653

... (truncated)

Commits

• 44a953c chore(release): v5.8.1 [skip ci]
• b4a0260 fix(core): fix merging of collections loaded via joined strategy
• faae84e fix(core): try to fix merging of large collections loaded via joined strategy
• 5e974a9 chore(deps): update patch/minor dependencies
• 94eed5e fix(core): ensure entity is not in persist stack after em.insert/Many() is ...
• f6e8204 fix(core): ensure merging of data to already loaded entities won't fail in so...
• 9496979 chore(deps): update patch/minor dependencies to v6.7.0
• 3e9eb40 chore(deps): update dependency mysql2 to v3.6.1
• a66f662 docs: add OG image
• 4a07c28 docs: add v5.8 docs snapshot
• Additional commits viewable in compare view

Updates mongoose from 7.3.3 to 7.5.1

Release notes

Sourced from mongoose's releases.

7.5.1 / 2023-09-11

• fix: set default value for _update when no update object is provided and versionKey is set to false #13795 #13783 MohOraby
• fix: avoid unexpected error when accessing null array element on discriminator array when populating #13716 ZSabakh
• types(schematypes): use DocType for instance method this #13822 #13800 pshaddel
• types: remove duplicated 'exists' method in Model interface in models.d.ts #13818 ohzeno
• docs(model): replace outdated docs on deprecated findOneAndUpdate() overwrite option #13821 #13715
• docs: add example of using virtuals.pathsToSkip option for toObject() and toJSON() #13798 RobertHunter-Pluto

7.5.0 / 2023-08-29

• feat: use mongodb driver v5.18.1
• feat: allow top level dollar keys with findOneAndUpdate(), update() for MongoDB 5 #13786
• fix(document): make array getters avoid unintentionally modifying array, defer getters until index access instead #13774
• feat: deprecate overwrite option for findOneAndUpdate() #13578
• feat: add pathsToSkip option for Model.validate #13663 #10353
• feat: support alias when declaring index #13659 #13276
• fix(query): remove unnecessary check for atomic operators in findOneAndReplace() #13678
• types: add SearchMeta Interface for Atlas Search #13792 mreouven
• types(schematypes): add missing BigInt SchemaType #13787

7.4.5 / 2023-08-25

• fix(debug): avoid putting virtuals and getters in debug output #13778
• fix(model): make Model.bulkWrite() with empty array and ordered false not throw an error #13664
• fix(document): correctly handle inclusive/exclusive projections when applying subdocument defaults #13763 #13720

7.4.4 / 2023-08-22

• fix(connection): reset document state in between transaction retries #13726 #13698
• fix(cursor): bubble up resumeTokenChanged event from change streams #13736 #13607
• fix(query+populate): add refPath to projection by default, unless explicitly excluded #13758
• fix(schema): support 'ascending', 'asc', 'descending', 'desc' for index direction #13761 #13725
• fix(ChangeStream): add _bindEvents to addListener function for observable support #13759 yury-ivaniutsenka
• types: infer return type when using get(), markModified(), etc. with known property name literal #13739 maybesmurf
• types: add missing typings for option includeResultMetadata #13747 #13746 Idnan
• types: export InferSchemaType #13737
• docs(middleware): clarify that query middleware applies to document by default #13734 #13713
• docs: add brief note on TypeScript generic usage for embedded discriminator path() calls #13728 #10435
• docs: link v7 migration guide #13742 Cooldogyum
• docs(migrating_to_6): add note about incompatible packages #13733

7.4.3 / 2023-08-11

• fix: avoid applying map property getters when saving #13704 #13657
• fix(query): allow deselecting discriminator key #13722 #13679
• types(models+query): return lean type when passing QueryOptions with lean: true to relevant model functions like find() and findOne() #13721 #13705
• types(schema): correct return type for Schema.prototype.indexes() #13718 #13702
• types: allow accessing options from pre middleware #13708 #13633
• types: add UpdateQueryKnownOnly type for stricter UpdateQuery type checking #13699 #13630

... (truncated)

Changelog

Sourced from mongoose's changelog.

7.5.1 / 2023-09-11

• fix: set default value for _update when no update object is provided and versionKey is set to false #13795 #13783 MohOraby
• fix: avoid unexpected error when accessing null array element on discriminator array when populating #13716 ZSabakh
• types(schematypes): use DocType for instance method this #13822 #13800 pshaddel
• types: remove duplicated 'exists' method in Model interface in models.d.ts #13818 ohzeno
• docs(model): replace outdated docs on deprecated findOneAndUpdate() overwrite option #13821 #13715
• docs: add example of using virtuals.pathsToSkip option for toObject() and toJSON() #13798 RobertHunter-Pluto

7.5.0 / 2023-08-29

• feat: use mongodb driver v5.18.1
• feat: allow top level dollar keys with findOneAndUpdate(), update() for MongoDB 5 #13786
• fix(document): make array getters avoid unintentionally modifying array, defer getters until index access instead #13774
• feat: deprecate overwrite option for findOneAndUpdate() #13578
• feat: add pathsToSkip option for Model.validate #13663 #10353
• feat: support alias when declaring index #13659 #13276
• fix(query): remove unnecessary check for atomic operators in findOneAndReplace() #13678
• types: add SearchMeta Interface for Atlas Search #13792 mreouven
• types(schematypes): add missing BigInt SchemaType #13787

7.4.5 / 2023-08-25

• fix(debug): avoid putting virtuals and getters in debug output #13778
• fix(model): make Model.bulkWrite() with empty array and ordered false not throw an error #13664
• fix(document): correctly handle inclusive/exclusive projections when applying subdocument defaults #13763 #13720

6.12.0 / 2023-08-24

• feat: use mongodb driver v4.17.1
• fix(model): make Model.bulkWrite() with empty array and ordered false not throw an error #13664
• fix(document): correctly handle inclusive/exclusive projections when applying subdocument defaults #13763 #13720

7.4.4 / 2023-08-22

• fix(connection): reset document state in between transaction retries #13726 #13698
• fix(cursor): bubble up resumeTokenChanged event from change streams #13736 #13607
• fix(query+populate): add refPath to projection by default, unless explicitly excluded #13758
• fix(schema): support 'ascending', 'asc', 'descending', 'desc' for index direction #13761 #13725
• fix(ChangeStream): add _bindEvents to addListener function for observable support #13759 yury-ivaniutsenka
• types: infer return type when using get(), markModified(), etc. with known property name literal #13739 maybesmurf
• types: add missing typings for option includeResultMetadata #13747 #13746 Idnan
• types: export InferSchemaType #13737
• docs(middleware): clarify that query middleware applies to document by default #13734 #13713
• docs: add brief note on TypeScript generic usage for embedded discriminator path() calls #13728 #10435
• docs: link v7 migration guide #13742 Cooldogyum
• docs(migrating_to_6): add note about incompatible packages #13733

6.11.6 / 2023-08-21

... (truncated)

Commits

• 91bd797 chore: release 7.5.1
• f552fe2 Merge pull request #13842 from Automattic/vkarpov15/gh-13839
• e42aaaf style: fix lint
• 41de90c Merge pull request #13716 from Hajjiri/discriminator-update-fix
• 8df3699 Merge pull request #13822 from pshaddel/master
• 78bca70 test: add test case for #13839
• 0c694ed Merge pull request #13839 from ZSabakh/patch-1
• fbc01b8 Fixed exception where a null element within an array would be attempted to be...
• 5eb374d Merge pull request #13821 from Automattic/vkarpov15/gh-13715
• 63a7fc8 fix: lint
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.

[BrunnerLivio]

@dependabot rebase

[BrunnerLivio]

https://github.com/dependabot rebase

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.