Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/sarthakm21/WorkTrack/network/alerts).
Bumps mquery to 3.2.5 and updates ancestor dependency mongoose. These dependencies need to be updated together.
Updates
mquery
from 3.2.2 to 3.2.5Changelog
Sourced from mquery's changelog.
Commits
6646bd9
chore: release 3.2.5158f059
Merge pull request #121 from 418sec/1-npm-mqueryd3b230b
Merge pull request #1 from zpbrent/patch-1a7b6d7c
Update utils.js34344fa
chore: release 3.2.42dd768d
fix(utils): make clone() only copy own propertiesbb185d9
chore: update changelog with CVEeeaa57c
chore: release 3.2.3792e69f
fix(utils): avoid copying special properties like__proto__
when merging an...2268a48
Merge pull request #118 from aheckmann/dependabot/npm_and_yarn/mongodb-3.6.1Updates
mongoose
from 5.9.20 to 5.13.15Changelog
Sourced from mongoose's changelog.
... (truncated)
Commits
ca7996b
chore: release 5.13.15e75732a
Merge pull request #12307 from Automattic/vkarpov15/fix-5x-builda1144dc
test: run node 7 tests with upgraded npm re: #12297dfc4ad7
test: try upgrading npm for node v4 tests re: #12297b9e985c
test: more strict@types/node
version4d813fa
test: fix@types/node
version in tests re: #1229799b4189
Merge pull request #12297 from shubanker/issue/prototype-pollution-5.x-patch5eb11dd
made function non async6a19731
fix(schema): disallow setting proto when creating schema with dotted prop...a2ec28d
Merge pull request #11366 from laissonsilveira/5.xDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/sarthakm21/WorkTrack/network/alerts).