build(deps): bump mongoose from 6.3.3 to 6.5.4

[dependabot[bot]]

Bumps mongoose from 6.3.3 to 6.5.4.

Release notes

Sourced from mongoose's releases.

6.5.4 / 2022-08-30

• fix(document): allow calling $assertPopulated() with values to better support manual population #12233
• fix(connection+mongoose): better handling for calling model() with 1 argument #12359
• fix(model): allow defining discriminator virtuals and methods using schema options #12326
• fix(types): fix MongooseQueryMiddleware missing "findOneAndReplace" and "replaceOne" #12330 #12329 Jule- lpizzinidev
• fix(types): fix replaceOne return type #12351 lpizzinidev
• fix(types): use this for return type from $assertPopulated() #12234
• docs: highlight how to connect using auth in README #12354 AntonyOnScript
• docs: improve jsdoc comments for private methods #12337 hasezoey
• docs: fix minor typo in compatibility table header #12355 skyme5

6.5.3 / 2022-08-24

• fix(document): handle maps when applying defaults to nested paths #12322
• fix(schema): make ArraySubdocuments apply _id defaults on init #12264
• fix(populate): handle specifying recursive populate as a string with discriminators #12266
• perf(types): remove extends Query in Schema.pre() and Schema.post(), loosen discriminator() generic #10349
• perf(types): some more micro-optimizations re: #10349, remove extra type checking on $ne, etc.
• fix(types): infer schema on connection.model() #12298 #12125 hasezoey
• fix(types): add missing findById() type definitions #12309 lpizzinidev
• fix(types): allow $search in $lookup pipeline stages for MongoDB v6.x support #12278 AbdelrahmanHafez
• fix(types): add parameter "options" to "Model.remove" #12258 hasezoey
• fix(types): sync single-generic-no-constraint "model" between "index.d.ts" and "connection.d.ts" #12299 hasezoey
• fix(types): update isDirectModified typing #12290 gabrielDonnantuoni
• docs: update links on api docs #12293 eatmoarrice
• docs: add note about language_override option #12310 IslandRhythms
• docs(document): add "String[]" to Document.depopulate as jsdoc parameter type #12300 hasezoey
• docs: update Node.js EventEmitter url #12303 rainrisa

6.5.2 / 2022-08-09

• fix(aggregate): avoid throwing error when disconnecting with change stream open #12201 ramos-ph
• fix(query): overwrite top-level key if using Query.prototype.set() to set to undefined #12155
• fix(query): shallow clone options before modifying #12176
• fix(types): auto schema type inference on Connection.prototype.model() #12240 hasezoey
• fix(types): better typescript support for schema plugins #12139 emiljanitzek
• fix(types): make bulkWrite() type param optional #12221 #12212
• docs: misc cleanup #12199 hasezoey
• docs: highlight current top-most visible header in navbar #12222 hasezoey
• docs(populate): improve examples for Document.prototype.populate() #12111
• docs(middleware): clarify document vs model in middleware docs #12113

6.5.1 / 2022-08-03

• fix(timestamps): set timestamps on child schema when child schema has timestamps: true but parent schema does not #12119
• fix(schema+timestamps): handle insertMany() with timestamps and discriminators #12150
• fix(model+query): handle populate with lean transform that deletes _id #12143
• fix(types): allow $pull with _id #12142
• fix(types): add schema plugin option inference #12196 hasezoey

... (truncated)

Changelog

Sourced from mongoose's changelog.

6.5.4 / 2022-08-30

• fix(document): allow calling $assertPopulated() with values to better support manual population #12233
• fix(connection+mongoose): better handling for calling model() with 1 argument #12359
• fix(model): allow defining discriminator virtuals and methods using schema options #12326
• fix(types): fix MongooseQueryMiddleware missing "findOneAndReplace" and "replaceOne" #12330 #12329 Jule- lpizzinidev
• fix(types): fix replaceOne return type #12351 lpizzinidev
• fix(types): use this for return type from $assertPopulated() #12234
• docs: highlight how to connect using auth in README #12354 AntonyOnScript
• docs: improve jsdoc comments for private methods #12337 hasezoey
• docs: fix minor typo in compatibility table header #12355 skyme5

6.5.3 / 2022-08-24

• fix(document): handle maps when applying defaults to nested paths #12322
• fix(schema): make ArraySubdocuments apply _id defaults on init #12264
• fix(populate): handle specifying recursive populate as a string with discriminators #12266
• perf(types): remove extends Query in Schema.pre() and Schema.post(), loosen discriminator() generic #10349
• perf(types): some more micro-optimizations re: #10349, remove extra type checking on $ne, etc.
• fix(types): infer schema on connection.model() #12298 #12125 hasezoey
• fix(types): add missing findById() type definitions #12309 lpizzinidev
• fix(types): allow $search in $lookup pipeline stages for MongoDB v6.x support #12278 AbdelrahmanHafez
• fix(types): add parameter "options" to "Model.remove" #12258 hasezoey
• fix(types): sync single-generic-no-constraint "model" between "index.d.ts" and "connection.d.ts" #12299 hasezoey
• fix(types): update isDirectModified typing #12290 gabrielDonnantuoni
• docs: update links on api docs #12293 eatmoarrice
• docs: add note about language_override option #12310 IslandRhythms
• docs(document): add "String[]" to Document.depopulate as jsdoc parameter type #12300 hasezoey
• docs: update Node.js EventEmitter url #12303 rainrisa

5.13.15 / 2022-08-22

• fix: backport fix for CVE-2022-2564 #12281 shubanker
• docs: fix broken link from findandmodify method deprecation #11366 laissonsilveira

6.5.2 / 2022-08-09

• fix(aggregate): avoid throwing error when disconnecting with change stream open #12201 ramos-ph
• fix(query): overwrite top-level key if using Query.prototype.set() to set to undefined #12155
• fix(query): shallow clone options before modifying #12176
• fix(types): auto schema type inference on Connection.prototype.model() #12240 hasezoey
• fix(types): better typescript support for schema plugins #12139 emiljanitzek
• fix(types): make bulkWrite() type param optional #12221 #12212
• docs: misc cleanup #12199 hasezoey
• docs: highlight current top-most visible header in navbar #12222 hasezoey
• docs(populate): improve examples for Document.prototype.populate() #12111
• docs(middleware): clarify document vs model in middleware docs #12113

6.5.1 / 2022-08-03

... (truncated)

Commits

• 803a786 chore: release 6.5.4
• b60d0e6 Merge pull request #12341 from Automattic/vkarpov15/gh-12233
• 20584b2 fix(mongoose): fix build from #12359
• 3bef3cf fix(connection+mongoose): better handling for calling model() with 1 argument
• aba698b style: fix lint
• f858ca5 Merge pull request #12359 from chochihim/patch-1
• c6d5889 Update connection.js
• 53d4f38 Update lib/connection.js
• 1563a1b docs(document): improve $assertPopulated() docs
• 67bfddd Merge pull request #12337 from hasezoey/changeCommentType
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot[bot]]

The following labels could not be found: dependencies.

[zoeself]

@dependabot[bot] thank you for your Pull Request. I'll assign someone to review it soon.

If this PR solves a todo from the code, please don't forget to remove it.

[zoeself]

@akhmadiy I couldn't find any assignee for this task. This is either because there are no contributors with role REV available or because the project does not have enough funds.

Please, make sure there is at least one available contributor with the required role and the project can afford to pay them.

[dependabot[bot]]

Superseded by #111.