Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): Bump mongoose from 5.13.7 to 5.13.11 #643

Closed
wants to merge 1 commit into from
Closed

chore(deps): Bump mongoose from 5.13.7 to 5.13.11 #643

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 18, 2021

Bumps mongoose from 5.13.7 to 5.13.11.

Changelog

Sourced from mongoose's changelog.

5.13.11 / 2021-10-12

  • fix: upgrade mongodb -> 3.7.2 #10871 winstonralph
  • fix(connection): call setMaxListeners(0) on MongoClient to avoid event emitter memory leak warnings with useDb() #10732

6.0.10 / 2021-10-08

  • fix(query): add back strictQuery option to avoid empty filter issues, tie it to strict by default for compatibility #10781 #10763
  • fix(model): avoid unnecessarily dropping text indexes in syncIndexes() #10851 #10850 IslandRhythms
  • fix(query): avoid trying to call toArray() on cursor if find() error occurred #10845
  • fix: accepts uppercase values in mongoose.isValidObjectId #10846 foxadb
  • perf(document): further reduce unnecessary objects and keys to minimize document memory overhead #10400
  • fix(index.d.ts): restore unpacked type and avoid distributive conditional types #10859 dbellavista
  • fix(index.d.ts): add correct null typings for findOneAndUpdate() and findByIdAndUpdate() #10820
  • fix(index.d.ts): make insertMany() correctly return Promise if passing single document to insertMany() #10802
  • fix(index.d.ts): avoid weird issue where TypeScript 4.3.x and 4.4.x makes string extend Function #10746
  • fix(index.d.ts): allow type: SchemaTypeOptions[] when defining schema #10789
  • fix(index.d.ts): allow using $in with enum fields #10757 #10734
  • fix(index.d.ts): add missing fields and options params to Model constructor #10817
  • fix(index.d.ts): support extending type for mongoose.models #10806 MunifTanjim
  • docs: enhance docs section linking #10779 saveman71
  • docs(middleware): add missing query middleware #10721
  • docs: fix typo #10853 mdatif796
  • docs: add missing to #10848 digidub

5.13.10 / 2021-10-05

  • fix(index.d.ts): allow using type: SchemaDefinitionProperty in schema definitions #10674
  • fix(index.d.ts): allow AnyObject as param to findOneAndReplace() #10714

6.0.9 / 2021-10-04

  • fix(document): init non-schema values if strict is set to false #10828
  • fix(document): correctly track saved state for deeply nested objects #10773
  • fix(array): avoid mutating arrays passed into Model() constructor #10766
  • fix(cursor): allow using find().cursor() before connecting, report errors in pre('find') hooks when using .cursor() #10785
  • fix(populate): support ref: Model with virtual populate #10695
  • fix(schema): support type: { subpath: String } in document array definitions and improve schema interpretAsType error messages if type name is undefined #10750
  • fix: upgrade to mongodb driver 4.1.2 #10810 orgads
  • fix(subdocument): add extra precaution to throw an error if a subdocument is a parent of itself in ownerDocument() #9259
  • perf(index.d.ts): make model() call more strict to improve VS Code autocomplete perf #10801 traverse1984
  • fix(index.d.ts): allow calling depopulate with 0 args #10793
  • fix(index.d.ts): Add type definitions for allowDiskUse #10791 coyotte508
  • docs(populate): expand virtual populate docs with info on principle of least cardinality and other info #10558
  • docs: add migration guide to side bar #10769
  • docs(connections+api): clarify that maxPoolSize is now 100 by default #10809
  • docs(schema): add Schema#virtuals to docs as a public property #10829
  • docs: remove array indexes section from FAQ #10784 Duchynko
  • docs(model): fix broken example #10831 Okekeprince1
  • docs: fix markdown issue with schemas.md #10839 aseerkt

... (truncated)

Commits
  • 4b8e0d1 chore: release 5.13.11
  • f516c7f Merge pull request #10871 from winstonralph/fix/mongodb-security
  • 8dd66ca chore: undo mistaken version bump
  • 1192162 fix(security): updated mongodb dependency due to vulnerabilities
  • 30efc39 fix(connection): call setMaxListeners(0) on MongoClient to avoid event emit...
  • d99f42c chore: release 5.13.10
  • 1a15331 fix(index.d.ts): allow using type: SchemaDefinitionProperty in schema definit...
  • 1f9e481 fix(index.d.ts): allow AnyObject as param to findOneAndReplace()
  • 07946be chore: release v5.13.9
  • 264554f fix: upgrade to mpath v0.8.4 re: security issue
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
chore(deps): Bump mongoose from 5.13.7 to 5.13.11
e425b48 
Bumps [mongoose](https://github.com/Automattic/mongoose) from 5.13.7 to 5.13.11.
- [Release notes](https://github.com/Automattic/mongoose/releases)
- [Changelog](https://github.com/Automattic/mongoose/blob/master/CHANGELOG.md)
- [Commits](Automattic/mongoose@5.13.7...5.13.11)

---
updated-dependencies:
- dependency-name: mongoose
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Oct 18, 2021
@dependabot dependabot bot mentioned this pull request Oct 18, 2021
Closed
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Oct 25, 2021

Superseded by #649.

@dependabot dependabot bot closed this Oct 25, 2021
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/mongoose-5.13.11 branch October 25, 2021 08:13
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@kodiakhq kodiakhq[bot] kodiakhq[bot] approved these changes

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants