Bump mongoose from 5.3.9 to 5.3.14

[dependabot-preview[bot]]

Bumps mongoose from 5.3.9 to 5.3.14.

Changelog

*Sourced from [mongoose's changelog](https://github.com/Automattic/mongoose/blob/master/History.md).* > 5.3.14 / 2018-11-27 > =================== > * docs(api): use `openUri()` instead of legacy `open()` [#7277](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7277) [artemjackson](https://github.com/artemjackson) > * fix(document): don't mark date underneath single nested as modified if setting to string [#7264](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7264) > * fix(update): set timestamps on subdocs if not using $set with no overwrite [#7261](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7261) > * fix(document): use symbol instead of `__parent` so user code doesn't conflict [#7230](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7230) > * fix(mongoose): allow using `mongoose.model()` without context, like `import {model} from 'mongoose'` [#3768](https://github-redirect.dependabot.com/Automattic/mongoose/issues/3768) > > 5.3.13 / 2018-11-20 > =================== > * fix: bump mongodb driver -> 3.1.10 [#7266](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7266) > * fix(populate): support setting a model as a `ref` [#7253](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7253) > * docs(schematype): add ref() function to document what is a valid `ref` path in a schematype [#7253](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7253) > * fix(array): clean modified subpaths when calling `splice()` [#7249](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7249) > * docs(compatibility): don't show Mongoose 4.11 as compatible with MongoDB 3.6 re: MongoDB's official compatibility table [#7248](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7248) [a-harrison](https://github.com/a-harrison) > * fix(document): report correct validation error if doc array set to primitive [#7242](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7242) > * fix(mongoose): print warning when including server-side lib with jest jsdom environment [#7240](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7240) > > 5.3.12 / 2018-11-13 > =================== > * docs(compatibility): don't show Mongoose 4.11 as compatible with MongoDB 3.6 re: MongoDB's official compatibility table [#7238](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7238) [a-harrison](https://github.com/a-harrison) > * fix(populate): use `instanceof` rather than class name for comparison [#7237](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7237) [ivanseidel](https://github.com/ivanseidel) > * docs(api): make options show up as a nested list [#7232](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7232) > * fix(document): don't mark array as modified on init if doc array has default [#7227](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7227) > * docs(api): link to bulk write result object in `bulkWrite()` docs [#7225](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7225) > > 5.3.11 / 2018-11-09 > =================== > * fix(model): make parent pointers non-enumerable so they don't crash JSON.stringify() [#7220](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7220) > * fix(document): allow saving docs with nested props with '.' using `checkKeys: false` [#7144](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7144) > * docs(lambda): use async/await with lambda example [#7019](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7019) > > 5.3.10 / 2018-11-06 > =================== > * fix(discriminator): support reusing a schema for multiple discriminators [#7200](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7200) > * fix(cursor): handle `lean(false)` correctly with query cursors [#7197](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7197) > * fix(document): avoid manual populate if `ref` not set [#7193](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7193) > * fix(schema): handle schema without `.base` for browser build [#7170](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7170) > * docs: add further reading section

Commits

- [`0faeccb`](https://github.com/Automattic/mongoose/commit/0faeccb27e2e4786b97f88dc436e7235a9fe7cc9) chore: release 5.3.14 - [`d697b3a`](https://github.com/Automattic/mongoose/commit/d697b3a3cdc08dbff9d19b7f3833f9c620c7bb76) docs: add inline cpc - [`b24e80f`](https://github.com/Automattic/mongoose/commit/b24e80f6187d9f9d5832a81bf6a1a2f66fecabd3) fix(update): set timestamps on subdocs if not using $set with no overwrite - [`91e0167`](https://github.com/Automattic/mongoose/commit/91e0167ec6c4a3a36eaa35e7a986d0c4cfac8556) test(update): repro [#7261](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7261) - [`788ea2a`](https://github.com/Automattic/mongoose/commit/788ea2a3f6a1cc5ae5d412eabceb05d994fef944) style: fix lint - [`776b77a`](https://github.com/Automattic/mongoose/commit/776b77af0f5a01e938ea7d722c9dc44512c23723) Merge pull request [#7277](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7277) from artemjackson/patch-1 - [`3914e01`](https://github.com/Automattic/mongoose/commit/3914e01270035c94c821c353cc3e1f820288a3ef) fix(document): don't mark date underneath single nested as modified if settin... - [`8fd2c05`](https://github.com/Automattic/mongoose/commit/8fd2c05056be810d96bc6e11d19666f920e509f3) test(document): repro [#7264](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7264) - [`f70dd43`](https://github.com/Automattic/mongoose/commit/f70dd4360baad1279b909259f8d94592875aeb5c) docs(compatibility): add link to pluralsight course on upgrading to mongoose 4 - [`7b5b679`](https://github.com/Automattic/mongoose/commit/7b5b679c230644c2ee5ea6fb1f0eed8bdbbaa753) fix(document): use symbol instead of `__parent` so user code doesn't conflict - Additional commits viewable in [compare view](https://github.com/Automattic/mongoose/compare/5.3.9...5.3.14)

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot ignore this [patch|minor|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Automerge options (never/patch/minor, and dev/runtime dependencies) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) Finally, you can contact us by mentioning @dependabot.