search

flaviuse / mern-authentication

MERN stack authentication boilerplate: password reset, email verification, server sessions, redux, typescript, hooks and docker for dev and prod.
https://mern-auth-client.herokuapp.com/login
MIT License
439 stars 95 forks source link

[Snyk] Upgrade mongoose from 6.5.2 to 6.6.1 #157

Closed flaviuse closed 1 year ago

flaviuse commented 2 years ago

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade mongoose from 6.5.2 to 6.6.1.

![merge advice](https://app.snyk.io/badges/merge-advice/?package_manager=npm&package_name=mongoose&from_version=6.5.2&to_version=6.6.1&pr_id=ff7e69e8-a5f3-4d19-a3e9-89b24c9bf501&visibility=true&has_feature_flag=false) :information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
- The recommended version is **5 versions** ahead of your current version. - The recommended version was released **22 days ago**, on 2022-09-14.
Release notes
Package name: mongoose
  • 6.6.1 - 2022-09-14

    6.6.1 / 2022-09-14

    • fix: correctly apply defaults after subdoc init #12328
    • fix(array): avoid using default _id when using pull() #12294
    • fix: allow null values inside $expr objects #12429 MartinDrost
    • fix(query): use correct Query constructor when cloning query #12418
    • docs(website): remove setting "latest38x" which is not used anywhere #12396 hasezoey
  • 6.6.0 - 2022-09-08

    6.6.0 / 2022-09-08

    • feat: upgrade mongodb driver -> 4.9.1 #12370 AbdelrahmanHafez
    • feat: re-export default Mongoose instance properties for ESM named imports support #12256
    • feat(model): add option to skip invalid fields with castObject() #12156 IslandRhythms
    • feat: use setPrototypeOf() instead of proto to allow running on Deno #12315
    • feat(QueryCursor): add support for AbortSignal on eachAsync() #12323
    • feat(types): add types for new $densify operator #12118 IslandRhythms
  • 6.5.5 - 2022-09-07

    6.5.5 / 2022-09-07

    • fix(setDefaultsOnInsert): avoid applying defaults on insert if nested property set #12279
    • fix(model): make applyHooks() and applyMethods() handle case where custom method is set to Mongoose implementation #12254
    • fix(types): add string "ascending" and "descending" index-directions #10269
    • docs: upgrade dox to 1.0.0 #12403 hasezoey
    • docs: update old mongodb nodejs driver documentation urls #12387 hasezoey
    • docs: update JSDOC ... (spread) definition #12388 hasezoey
    • refactor(model): allow optionally passing indexes to createIndexes and cleanIndexes #12280 AbdelrahmanHafez
  • 6.5.4 - 2022-08-30

    6.5.4 / 2022-08-30

    • fix(document): allow calling $assertPopulated() with values to better support manual population #12233
    • fix(connection+mongoose): better handling for calling model() with 1 argument #12359
    • fix(model): allow defining discriminator virtuals and methods using schema options #12326
    • fix(types): fix MongooseQueryMiddleware missing "findOneAndReplace" and "replaceOne" #12330 #12329 Jule- lpizzinidev
    • fix(types): fix replaceOne return type #12351 lpizzinidev
    • fix(types): use this for return type from $assertPopulated() #12234
    • docs: highlight how to connect using auth in README #12354 AntonyOnScript
    • docs: improve jsdoc comments for private methods #12337 hasezoey
    • docs: fix minor typo in compatibility table header #12355 skyme5
  • 6.5.3 - 2022-08-25

    6.5.3 / 2022-08-24

    • fix(document): handle maps when applying defaults to nested paths #12322
    • fix(schema): make ArraySubdocuments apply _id defaults on init #12264
    • fix(populate): handle specifying recursive populate as a string with discriminators #12266
    • perf(types): remove extends Query in Schema.pre() and Schema.post(), loosen discriminator() generic #10349
    • perf(types): some more micro-optimizations re: #10349, remove extra type checking on $ne, etc.
    • fix(types): infer schema on connection.model() #12298 #12125 hasezoey
    • fix(types): add missing findById() type definitions #12309 lpizzinidev
    • fix(types): allow $search in $lookup pipeline stages for MongoDB v6.x support #12278 AbdelrahmanHafez
    • fix(types): add parameter "options" to "Model.remove" #12258 hasezoey
    • fix(types): sync single-generic-no-constraint "model" between "index.d.ts" and "connection.d.ts" #12299 hasezoey
    • fix(types): update isDirectModified typing #12290 gabrielDonnantuoni
    • docs: update links on api docs #12293 eatmoarrice
    • docs: add note about language_override option #12310 IslandRhythms
    • docs(document): add "String[]" to Document.depopulate as jsdoc parameter type #12300 hasezoey
    • docs: update Node.js EventEmitter url #12303 rainrisa
  • 6.5.2 - 2022-08-10
from mongoose GitHub release notes
Commit messages
Package name: mongoose
  • 71478c4 chore: release 6.6.1
  • c35dfdd Merge pull request #12429 from MartinDrost/master
  • d0bea58 fix: allow null values inside $expr objects
  • 5f62e70 Merge pull request #12427 from Automattic/vkarpov15/gh-12328
  • 47ce125 fix: correctly apply defaults after subdoc init
  • b46848d fix(document): correct context for default functions in subdocuments with init
  • 01145a2 Added TopN to AccumulatorOperator type (#12422)
  • 76f7412 test(model.test): move test inside suite (#12421)
  • 97c3bdb Merge pull request #12419 from Automattic/vkarpov15/gh-12294
  • 805c927 Merge pull request #12418 from Automattic/vkarpov15/gh-12365
  • 5798756 Merge pull request #12396 from hasezoey/websiteRemove38
  • 316c54b fix(array): apply fix for #12294 to nested paths
  • b97d410 fix(array): avoid using default `_id` when using pull()
  • 40b94c0 fix(array): avoid adding defaults to query filter when using `pull()` on a doc array with no `_id`
  • 19dd0a2 fix(query): use correct Query constructor when cloning query
  • e8ac7d7 Merge branch 'master' of https://github.com/Automattic/mongoose
  • f203bd4 Merge pull request #12408 from Automattic/dependabot/npm_and_yarn/master/babel/core-7.19.0
  • 0978aeb Merge pull request #12407 from Automattic/dependabot/npm_and_yarn/master/typescript-4.8.3
  • 066cb9d Merge branch 'master' into dependabot/npm_and_yarn/master/typescript-4.8.3
  • db3563d Merge pull request #12409 from Automattic/dependabot/npm_and_yarn/master/uuid-9.0.0
  • 41f976f chore(deps-dev): bump @ babel/core from 7.18.13 to 7.19.0
  • 162d866 chore(deps-dev): bump typescript from 4.8.2 to 4.8.3
  • b117557 Merge pull request #12410 from Automattic/dependabot/npm_and_yarn/master/typescript-eslint/parser-5.36.2
  • 3524e0b chore(deps-dev): bump @ typescript-eslint/parser from 5.36.1 to 5.36.2
Compare
**Note:** *You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.* For more information: 🧐 [View latest project report](https://app.snyk.io/org/flaviuse/project/4f948c0c-2a6e-4fba-8cd5-e5dfa4f57aab?utm_source=github&utm_medium=referral&page=upgrade-pr) 🛠 [Adjust upgrade PR settings](https://app.snyk.io/org/flaviuse/project/4f948c0c-2a6e-4fba-8cd5-e5dfa4f57aab/settings/integration?utm_source=github&utm_medium=referral&page=upgrade-pr) 🔕 [Ignore this dependency or unsubscribe from future upgrade PRs](https://app.snyk.io/org/flaviuse/project/4f948c0c-2a6e-4fba-8cd5-e5dfa4f57aab/settings/integration?pkg=mongoose&utm_source=github&utm_medium=referral&page=upgrade-pr#auto-dep-upgrades)