Bump mongoose from 5.4.16 to 5.4.21

[dependabot-preview[bot]]

Bumps mongoose from 5.4.16 to 5.4.21.

Changelog

*Sourced from [mongoose's changelog](https://github.com/Automattic/mongoose/blob/master/History.md).* > 5.4.21 / 2019-04-02 > =================== > * fix(updateValidators): run update validators correctly on Decimal128 paths [#7561](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7561) > * fix(update): cast array filters in nested doc arrays correctly [#7603](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7603) > * fix(document): allow .get() + .set() with aliased paths [#7592](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7592) > * fix(document): ensure custom getters on single nested subdocs don't get persisted if toObject.getters = true [#7601](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7601) > * fix(document): support setting subdoc path to subdoc copied using object rest `{...doc}` [#7645](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7645) > * docs(schema): correct out-of-date list of reserved words [#7593](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7593) > * docs(model+query): add link to update results docs and examples of using results of updateOne(), etc. [#7582](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7582) > * docs: use atomic as opposed to $atomic consistently [#7649](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7649) [720degreeLotus](https://github.com/720degreeLotus) > > 5.4.20 / 2019-03-25 > =================== > * docs(tutorials): add tutorial about `lean()` [#7640](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7640) > * fix(discriminator): fix wrong modelName being used as value to partialFilterExpression index [#7635](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7635) [#7634](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7634) [egorovli](https://github.com/egorovli) > * fix(document): allow setters to modify `this` when overwriting single nested subdoc [#7585](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7585) > * fix(populate): handle count option correctly with multiple docs [#7573](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7573) > * fix(date): support declaring min/max validators as functions [#7600](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7600) [ChienDevIT](https://github.com/ChienDevIT) > * fix(discriminator): avoid projecting in embedded discriminator if only auto-selected path is discriminator key [#7574](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7574) > * fix(discriminator): use discriminator model when using `new BaseModel()` with discriminator key [#7586](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7586) > * fix(timestamps): avoid throwing if doc array has timestamps and array is undefined [#7625](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7625) [serg33v](https://github.com/serg33v) > * docs(document): explain DocumentNotFoundError in save() docs [#7580](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7580) > * docs(query): fix .all() param type and add example [#7612](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7612) [720degreeLotus](https://github.com/720degreeLotus) > * docs: add useNewUrlParser to mongoose.connect for some pages [#7615](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7615) [YC](https://github.com/YC) > > 5.4.19 / 2019-03-11 > =================== > * fix(mongoose): ensure virtuals set on subdocs in global plugins get applied [#7592](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7592) > * docs(tutorials): add "Working With Dates" tutorial [#7597](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7597) > * docs(guide): clarify that versioning only affects array fields [#7555](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7555) > * docs(model): list out all bulkWrite() options [#7550](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7550) > > 5.4.18 / 2019-03-08 > =================== > * fix(document): handle nested virtuals in populated docs when parent path is projected out [#7491](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7491) > * fix(model): make subclassed models handle discriminators correctly [#7547](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7547) > * fix(model): remove $versionError from save options for better debug output [#7570](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7570) > > 5.4.17 / 2019-03-03 > =================== > * fix(update): handle all positional operator when casting array filters [#7540](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7540) > * fix(populate): handle populating nested path where top-level path is a primitive in the db [#7545](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7545) > * fix(update): run update validators on array filters [#7536](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7536) > * fix(document): clean modified subpaths when sorting an array [#7556](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7556) > * fix(model): cast $setOnInsert correctly with nested docs [#7534](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7534) > * docs: remove extra curly brace from example [#7569](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7569) [kolya182](https://github.com/kolya182)

Commits

- [`68c70a8`](https://github.com/Automattic/mongoose/commit/68c70a8a8c2ccc57406f596c21855016d62fbe9e) chore: release 5.4.21 - [`9a084d6`](https://github.com/Automattic/mongoose/commit/9a084d6f36261aa2d08ab00350908ae8d458eaba) fix(document): allow `set()` on aliased path - [`6b3383b`](https://github.com/Automattic/mongoose/commit/6b3383be0dea4dd3aa6ba0a461f383dec2c743d8) test(document): repro [#7592](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7592) - [`e3b4b8b`](https://github.com/Automattic/mongoose/commit/e3b4b8bf82f98ce49b0834194ed235ad24b43356) fix(updateValidators): run update validators correctly on Decimal128 paths - [`d0c36f0`](https://github.com/Automattic/mongoose/commit/d0c36f0740c563455bd274eec5fcfc22e6862222) test(updateValidators): repro [#7561](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7561) - [`5dfca82`](https://github.com/Automattic/mongoose/commit/5dfca82dab1a88dad6858911d650e5ace081e767) test: fix tests re: [#7592](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7592) - [`135c9b8`](https://github.com/Automattic/mongoose/commit/135c9b8acdc78624f6a9cdd88d7b651f95c6ae40) fix(document): allow .get() with aliased paths - [`f5fed7e`](https://github.com/Automattic/mongoose/commit/f5fed7e7b0613b9c4e77b96e460480ba6a123d83) test(document): repro [#7592](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7592) - [`aa21111`](https://github.com/Automattic/mongoose/commit/aa211119085180a6cdaad719e8d06703cef6d258) fix(document): ensure custom getters on single nested subdocs don't get persi... - [`b312a90`](https://github.com/Automattic/mongoose/commit/b312a9003287bbc36e419f61884fc11195c826ae) test(document): repro [#7601](https://github-redirect.dependabot.com/Automattic/mongoose/issues/7601) - Additional commits viewable in [compare view](https://github.com/Automattic/mongoose/compare/5.4.16...5.4.21)

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot ignore this [patch|minor|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Automerge options (never/patch/minor, and dev/runtime dependencies) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) Finally, you can contact us by mentioning @dependabot.

[dependabot-preview[bot]]

Superseded by #177.