search

ITISEnricoFermi / archivio-digitale-server

📚 Server per l'Archivio Digitale. 📚
https://itisenricofermi.github.io/archivio-digitale-server/
MIT License
4 stars 0 forks source link

Bump mongoose from 5.9.7 to 5.12.2 #263

Closed dependabot-preview[bot] closed 3 years ago

dependabot-preview[bot] commented 3 years ago

Bumps mongoose from 5.9.7 to 5.12.2.

Changelog

Sourced from mongoose's changelog.

5.12.2 / 2021-03-22

  • fix(QueryCursor): consistently execute post('find') hooks with an array of docs #10015 #9982 IslandRhythms
  • fix(schema): support setting ref as an option on an array SchemaType #10029
  • fix(query): apply schema-level select option from array schematypes #10029
  • fix(schema): avoid possible prototype pollution with Schema() constructor #10035 zpbrent
  • fix(model): make bulkWrite skip timestamps with timestamps: false #10050 SoftwareSing
  • fix(index.d.ts): make query methods return QueryWithHelpers so query helpers pass through chaining #10040
  • fix(index.d.ts): add upserted array to updateOne(), updateMany(), update() result #10042
  • fix(index.d.ts): add back Aggregate#project() types that were mistakenly removed in 5.12.0 #10043
  • fix(index.d.ts): always allow setting type in Schema to a SchemaType class or a Schema instance #10030
  • docs(transactions): introduce session.withTransaction() before session.startTransaction() because withTransaction() is the recommended approach #10008
  • docs(mongoose+browser): fix broken links to info about mongoose.Types #10016

5.12.1 / 2021-03-18

  • fix: update mongodb -> 3.6.5 to fix circular dependency warning #9900
  • fix(document): make toObject() use child schema flattenMaps option by default #9995
  • fix(ObjectId): make isValidObjectId() check that length 24 strings are hex chars only #10010 #9996 IslandRhythms
  • fix(query): correctly cast embedded discriminator paths when discriminator key is specified in array filter #9977
  • fix(schema): skip populated() check when calling applyGetters() with a POJO for mongoose-lean-getters support #9986
  • fix(populate): support populating dotted subpath of a populated doc that has the same id as a populated doc #10005
  • fix(index.d.ts): correct this for query helpers #10028 francescov1
  • fix(index.d.ts): avoid omitting function property keys in LeanDocuments, because TS can't accurately infer what's a function if using generic functions #9989
  • fix(index.d.ts): correct type definition for SchemaType#cast() #10039 #9980
  • fix(index.d.ts): make SchemaTypeOptions a class, add missing SchemaType#OptionsConstructor #10001
  • fix(index.d.ts): support calling findByIdAndUpdate() with filter, update, callback params #9981

5.12.0 / 2021-03-11

  • feat(populate): add transform option that Mongoose will call on every populated doc #3775
  • feat(query): make Query#pre() and Query#post() public #9784
  • feat(document): add Document#getPopulatedDocs() to return an array of all populated documents in a document #9702 IslandRhythms
  • feat(document): add Document#getAllSubdocs() to return an array of all single nested and array subdocuments #9764 IslandRhythms
  • feat(schema): allow schema as a schema path name #8798 IslandRhythms
  • feat(QueryCursor): Add batch processing for eachAsync #9902 khaledosama999
  • feat(connection): add noListener option to help with use cases where you're using useDb() on every request #9961
  • feat(index): emit 'createConnection' event when user calls mongoose.createConnection() #9985
  • feat(connection+index): emit 'model' and 'deleteModel' events on connections when creating and deleting models #9983
  • feat(query): allow passing explain option to Model.exists() #8098 IslandRhythms

5.11.20 / 2021-03-11

  • fix(query+populate): avoid unnecessarily projecting in subpath when populating a path that uses an elemMatch projection #9973
  • fix(connection): avoid db events deprecation warning with 'close' events #10004 #9930
  • fix(index.d.ts): make $pull more permissive to allow dotted paths #9993

5.11.19 / 2021-03-05

  • fix(document): skip validating array elements that aren't modified when validateModifiedOnly is set #9963

... (truncated)

Commits
  • 5549f26 chore: release 5.12.2
  • 4b1aaac Merge pull request #10050 from SoftwareSing/fix-bulkwrite-with-timestamps-false
  • 3759f34 chore: address CR comments
  • 5ffbb8e fix(query): apply schema-level select option from array schematypes
  • 7d19c9f test(query): repro #10029
  • 4b0052e fix(schema): support setting ref as an option on an array SchemaType
  • 171c31f test(schema): repro #10029
  • 96f7905 fix(index.d.ts): make query methods return QueryWithHelpers so query helper...
  • 04f880f fix(index.d.ts): add back Aggregate#project() types that were mistakenly re...
  • 9a3a7b4 style: fix lint
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired)
dependabot-preview[bot] commented 3 years ago

Superseded by #265.