Update dependency sequelize to v4.44.4 [SECURITY]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
sequelize (source)	`4.6.0` -> `4.44.4`

GitHub Vulnerability Alerts

CVE-2019-10752

Affected versions of sequelize are vulnerable to SQL Injection. The function sequelize.json() incorrectly formatted sub paths for JSON queries, which allows attackers to inject SQL statements and execute arbitrary SQL queries if user input is passed to the query. Exploitation example:

  where: this.sequelize.json("data.id')) AS DECIMAL) = 1 DELETE YOLO INJECTIONS; -- ", 1)
});```

## Recommendation

If you are using `sequelize` 5.x, upgrade to version 5.15.1 or later.
If you are using `sequelize` 4.x, upgrade to version 4.44.3 or later.

#### [CVE-2019-10748](https://nvd.nist.gov/vuln/detail/CVE-2019-10748)

Affected versions of `sequelize` are vulnerable to SQL Injection. The package fails to sanitize JSON path keys in the MariaDB and MySQL dialects,  which may allow attackers to inject SQL statements and execute arbitrary SQL queries.

## Recommendation

If you are using `sequelize` 5.x, upgrade to version 5.8.11 or later.
If you are using `sequelize` 4.x, upgrade to version 4.44.3 or later.
If you are using `sequelize` 3.x, upgrade to version 3.35.1 or later.

#### [GHSA-fw4p-36j9-rrj3](https://togithub.com/sequelize/sequelize/pull/11877)

Versions of `sequelize` prior to 4.44.4 are vulnerable to Denial of Service (DoS). The SQLite dialect fails to catch a `TypeError` exception for the `results` variable. The `results` value may be undefined and trigger the error on a `.map` call. This may allow attackers to submit malicious input that forces the exception and crashes the Node process.  

The following proof-of-concept crashes the Node process:

const Sequelize = require('sequelize');

const sequelize = new Sequelize({ dialect: 'sqlite', storage: 'database.sqlite' });

const TypeError = sequelize.define('TypeError', { name: Sequelize.STRING, });

TypeError.sync({force: true}).then(() => { return TypeError.create({name: "SELECT tbl_name FROM sqlite_master"}); });


## Recommendation

Upgrade to version 4.44.4 or later.

#### [GHSA-wfp9-vr4j-f49j](https://togithub.com/sequelize/sequelize/issues/7310)

Versions of `sequelize` prior to 4.12.0 are vulnerable to NoSQL Injection. Query operators such as `$gt` are not properly sanitized and may allow an attacker to alter data queries, leading to NoSQL Injection.

## Recommendation

Upgrade to version 4.12.0 or later

---

### Release Notes

<details>
<summary>sequelize/sequelize</summary>

### [`v4.44.4`](https://togithub.com/sequelize/sequelize/releases/v4.44.4)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.44.3...v4.44.4)

##### Bug Fixes

-   **sqlite:** properly catch errors ([#&#8203;11877](https://togithub.com/sequelize/sequelize/issues/11877)) ([8931bf6](https://togithub.com/sequelize/sequelize/commit/8931bf6c567b4cb3b35de8993cf74c82008b4275))

### [`v4.44.3`](https://togithub.com/sequelize/sequelize/releases/v4.44.3)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.44.2...v4.44.3)

##### Security

This release fixes two security issues for MySQL, both affecting same component.

<https://snyk.io/vuln/SNYK-JS-SEQUELIZE-450221>

-   **mysql:** json path security issues ([#&#8203;11332](https://togithub.com/sequelize/sequelize/issues/11332)) ([efd2f40](https://togithub.com/sequelize/sequelize/commit/efd2f40))

### [`v4.44.2`](https://togithub.com/sequelize/sequelize/releases/v4.44.2)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.44.1...v4.44.2)

##### Bug Fixes

-   use files and remove .npmignore ([6674a3c](https://togithub.com/sequelize/sequelize/commit/6674a3c))

### [`v4.44.1`](https://togithub.com/sequelize/sequelize/releases/v4.44.1)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.44.0...v4.44.1)

##### Bug Fixes

-   **pool:** destroy pooled errors properly with replication ([#&#8203;11140](https://togithub.com/sequelize/sequelize/issues/11140)) ([a1ccf04](https://togithub.com/sequelize/sequelize/commit/a1ccf04))

### [`v4.44.0`](https://togithub.com/sequelize/sequelize/releases/v4.44.0)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.43.2...v4.44.0)

##### Bug Fixes

-   **redshift:** allow standard_conforming_strings option ([#&#8203;10816](https://togithub.com/sequelize/sequelize/issues/10816)) ([a32263f](https://togithub.com/sequelize/sequelize/commit/a32263f))

##### Features

-   **postgres:** enable standard conforming strings when required ([#&#8203;10746](https://togithub.com/sequelize/sequelize/issues/10746)) ([c9d3a97](https://togithub.com/sequelize/sequelize/commit/c9d3a97))

### [`v4.43.2`](https://togithub.com/sequelize/sequelize/releases/v4.43.2)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.43.1...v4.43.2)

##### Bug Fixes

-   **mssql:** subquery handling for order ([#&#8203;10769](https://togithub.com/sequelize/sequelize/issues/10769)) ([73d7a65](https://togithub.com/sequelize/sequelize/commit/73d7a65))

### [`v4.43.1`](https://togithub.com/sequelize/sequelize/releases/v4.43.1)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.43.0...v4.43.1)

##### Bug Fixes

-   **mysql:** boolean TINYINT support ([#&#8203;10660](https://togithub.com/sequelize/sequelize/issues/10660)) ([2f92e21](https://togithub.com/sequelize/sequelize/commit/2f92e21))

### [`v4.43.0`](https://togithub.com/sequelize/sequelize/releases/v4.43.0)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.42.1...v4.43.0)

##### Features

-   **datatypes:** handle numbers passed as objects for bigint ([#&#8203;10496](https://togithub.com/sequelize/sequelize/issues/10496)) ([de39cff](https://togithub.com/sequelize/sequelize/commit/de39cff))

### [`v4.42.1`](https://togithub.com/sequelize/sequelize/releases/v4.42.1)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.42.0...v4.42.1)

##### Bug Fixes

-   locking generic-pool to 3.5.0 ([00e4984](https://togithub.com/sequelize/sequelize/commit/00e4984))

### [`v4.42.0`](https://togithub.com/sequelize/sequelize/releases/v4.42.0)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.41.2...v4.42.0)

##### Features

-   **transaction:** afterCommit hook ([#&#8203;10260](https://togithub.com/sequelize/sequelize/issues/10260)) ([d2428dd](https://togithub.com/sequelize/sequelize/commit/d2428dd))

### [`v4.41.2`](https://togithub.com/sequelize/sequelize/releases/v4.41.2)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.41.1...v4.41.2)

##### Bug Fixes

-   **query-generator:** add offset to unioned queries ([#&#8203;10149](https://togithub.com/sequelize/sequelize/issues/10149)) ([34e9fe1](https://togithub.com/sequelize/sequelize/commit/34e9fe1))

### [`v4.41.1`](https://togithub.com/sequelize/sequelize/releases/v4.41.1)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.41.0...v4.41.1)

##### Bug Fixes

-   **syntax:** correct parentheses around union ([#&#8203;9813](https://togithub.com/sequelize/sequelize/issues/9813)) ([#&#8203;10003](https://togithub.com/sequelize/sequelize/issues/10003)) ([#&#8203;10121](https://togithub.com/sequelize/sequelize/issues/10121)) ([4ff79dc](https://togithub.com/sequelize/sequelize/commit/4ff79dc))

### [`v4.41.0`](https://togithub.com/sequelize/sequelize/releases/v4.41.0)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.40.0...v4.41.0)

##### Features

-   deprecate aliases removed from v5.beta ([1bc8b0e](https://togithub.com/sequelize/sequelize/commit/1bc8b0e)) ([c6c2d17](https://togithub.com/sequelize/sequelize/commit/c6c2d17))

### [`v4.40.0`](https://togithub.com/sequelize/sequelize/releases/v4.40.0)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.39.1...v4.40.0)

##### Features

-   **associations:** enable overwrite unique constraint key name ([#&#8203;10045](https://togithub.com/sequelize/sequelize/issues/10045)) ([43ab707](https://togithub.com/sequelize/sequelize/commit/43ab707))

### [`v4.39.1`](https://togithub.com/sequelize/sequelize/releases/v4.39.1)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.39.0...v4.39.1)

##### Bug Fixes

-   **validators:** backport memory leak fix for isImmutable ([#&#8203;9973](https://togithub.com/sequelize/sequelize/issues/9973)) ([#&#8203;10031](https://togithub.com/sequelize/sequelize/issues/10031)) ([8fe475b](https://togithub.com/sequelize/sequelize/commit/8fe475b))

### [`v4.39.0`](https://togithub.com/sequelize/sequelize/releases/v4.39.0)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.38.1...v4.39.0)

##### Features

-   **postgres:** support ignoreDuplicates for postges >= 9.5 ([#&#8203;9954](https://togithub.com/sequelize/sequelize/issues/9954)) ([4e439fa](https://togithub.com/sequelize/sequelize/commit/4e439fa))

### [`v4.38.1`](https://togithub.com/sequelize/sequelize/releases/v4.38.1)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.38.0...v4.38.1)

##### Bug Fixes

-   **count:** duplicate mapping of fields break scopes ([#&#8203;9821](https://togithub.com/sequelize/sequelize/issues/9821)) ([e3bba44](https://togithub.com/sequelize/sequelize/commit/e3bba44))
-   **transaction:** prevent rollback without connection ([#&#8203;9889](https://togithub.com/sequelize/sequelize/issues/9889)) ([e26f62f](https://togithub.com/sequelize/sequelize/commit/e26f62f))

### [`v4.38.0`](https://togithub.com/sequelize/sequelize/releases/v4.38.0)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.37.10...v4.38.0)

##### Features

-   **data-types:** network types for Postgres ([#&#8203;9571](https://togithub.com/sequelize/sequelize/issues/9571)) ([2c3a6e7](https://togithub.com/sequelize/sequelize/commit/2c3a6e7))

### [`v4.37.10`](https://togithub.com/sequelize/sequelize/releases/v4.37.10)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.37.9...v4.37.10)

##### Bug Fixes

-   **transactions:** return patched promise from sequelize.query ([#&#8203;9473](https://togithub.com/sequelize/sequelize/issues/9473)) ([b903384](https://togithub.com/sequelize/sequelize/commit/b903384))

### [`v4.37.9`](https://togithub.com/sequelize/sequelize/releases/v4.37.9)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.37.8...v4.37.9)

##### Bug Fixes

-   set deployment to v4 ([51797c7](https://togithub.com/sequelize/sequelize/commit/51797c7))

### [`v4.37.8`](https://togithub.com/sequelize/sequelize/releases/v4.37.8)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.37.7...v4.37.8)

##### Bug Fixes

-   **query-generator:** regexp operator ([ab1c1e3](https://togithub.com/sequelize/sequelize/commit/ab1c1e3))

### [`v4.37.7`](https://togithub.com/sequelize/sequelize/releases/v4.37.7)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.37.6...v4.37.7)

##### Bug Fixes

-   **postgres/query-generator:** syntax error with auto-increment SMALLINT ([#&#8203;9406](https://togithub.com/sequelize/sequelize/issues/9406)) ([20f7eb4](https://togithub.com/sequelize/sequelize/commit/20f7eb4))

### [`v4.37.6`](https://togithub.com/sequelize/sequelize/releases/v4.37.6)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.37.5...v4.37.6)

##### Bug Fixes

-   **model:** don't add LIMIT in findOne() queries on unique key ([#&#8203;9273](https://togithub.com/sequelize/sequelize/issues/9273)) ([f0ae18d](https://togithub.com/sequelize/sequelize/commit/f0ae18d))

### [`v4.37.5`](https://togithub.com/sequelize/sequelize/releases/v4.37.5)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.37.4...v4.37.5)

##### Bug Fixes

-   **query-generator:** 1-to-many join in subQuery filter missing where clause ([#&#8203;9228](https://togithub.com/sequelize/sequelize/issues/9228)) ([#&#8203;9247](https://togithub.com/sequelize/sequelize/issues/9247)) ([3b623cb](https://togithub.com/sequelize/sequelize/commit/3b623cb))

### [`v4.37.4`](https://togithub.com/sequelize/sequelize/releases/v4.37.4)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.37.3...v4.37.4)

##### Bug Fixes

-   **query-generator:** generate subQuery filter for nested required joins ([#&#8203;9188](https://togithub.com/sequelize/sequelize/issues/9188)) ([20cac7a](https://togithub.com/sequelize/sequelize/commit/20cac7a))

### [`v4.37.3`](https://togithub.com/sequelize/sequelize/releases/v4.37.3)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.37.2...v4.37.3)

##### Bug Fixes

-   **transaction:** only rollback if connection was acquired ([#&#8203;9051](https://togithub.com/sequelize/sequelize/issues/9051)) ([a7e9e2b](https://togithub.com/sequelize/sequelize/commit/a7e9e2b))

### [`v4.37.2`](https://togithub.com/sequelize/sequelize/releases/v4.37.2)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.37.1...v4.37.2)

##### Bug Fixes

-   **query/abstract:** typo in error message ([#&#8203;9201](https://togithub.com/sequelize/sequelize/issues/9201)) ([ec0cb5e](https://togithub.com/sequelize/sequelize/commit/ec0cb5e))

### [`v4.37.1`](https://togithub.com/sequelize/sequelize/releases/v4.37.1)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.37.0...v4.37.1)

##### Bug Fixes

-   **model/aggregate:** inject scope before conforming options ([#&#8203;9190](https://togithub.com/sequelize/sequelize/issues/9190)) ([ba49c7f](https://togithub.com/sequelize/sequelize/commit/ba49c7f))

### [`v4.37.0`](https://togithub.com/sequelize/sequelize/releases/v4.37.0)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.36.1...v4.37.0)

##### Features

-   **mssql/describeTable:** include auto increment flag ([#&#8203;9171](https://togithub.com/sequelize/sequelize/issues/9171)) ([4daf522](https://togithub.com/sequelize/sequelize/commit/4daf522))

### [`v4.36.1`](https://togithub.com/sequelize/sequelize/releases/v4.36.1)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.36.0...v4.36.1)

##### Bug Fixes

-   **bulkCreate:** updateOnDuplicate doesn't map back to fields  ([#&#8203;9162](https://togithub.com/sequelize/sequelize/issues/9162)) ([83dfc5a](https://togithub.com/sequelize/sequelize/commit/83dfc5a))

### [`v4.36.0`](https://togithub.com/sequelize/sequelize/releases/v4.36.0)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.35.5...v4.36.0)

##### Features

-   **model:** decrement method ([7c1eb9b](https://togithub.com/sequelize/sequelize/commit/7c1eb9b))

### [`v4.35.5`](https://togithub.com/sequelize/sequelize/releases/v4.35.5)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.35.4...v4.35.5)

##### Bug Fixes

-   **scope:** include scope on eagerly created associations ([#&#8203;9127](https://togithub.com/sequelize/sequelize/issues/9127)) ([969978d](https://togithub.com/sequelize/sequelize/commit/969978d))

### [`v4.35.4`](https://togithub.com/sequelize/sequelize/releases/v4.35.4)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.35.3...v4.35.4)

##### Bug Fixes

-   **postgresql:** search path with datatypes that use dynamic oids ([#&#8203;9148](https://togithub.com/sequelize/sequelize/issues/9148)) ([2365206](https://togithub.com/sequelize/sequelize/commit/2365206))

### [`v4.35.3`](https://togithub.com/sequelize/sequelize/releases/v4.35.3)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.35.2...v4.35.3)

##### Bug Fixes

-   **model/bulkCreate:** properly pass error instances to AggregateError ([#&#8203;9133](https://togithub.com/sequelize/sequelize/issues/9133)) ([78a1fb6](https://togithub.com/sequelize/sequelize/commit/78a1fb6))

### [`v4.35.2`](https://togithub.com/sequelize/sequelize/releases/v4.35.2)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.35.1...v4.35.2)

##### Bug Fixes

-   escape attributes ([c6cf176](https://togithub.com/sequelize/sequelize/commit/c6cf176))

### [`v4.35.1`](https://togithub.com/sequelize/sequelize/releases/v4.35.1)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.35.0...v4.35.1)

##### Bug Fixes

-   **query-generator:** allow Op as comparator in sequelize.where ([#&#8203;9124](https://togithub.com/sequelize/sequelize/issues/9124)) ([476b08b](https://togithub.com/sequelize/sequelize/commit/476b08b))

### [`v4.35.0`](https://togithub.com/sequelize/sequelize/releases/v4.35.0)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.34.1...v4.35.0)

##### Bug Fixes

-   update validator.js to prevent denial of service ([#&#8203;9112](https://togithub.com/sequelize/sequelize/issues/9112)) ([bee03c1](https://togithub.com/sequelize/sequelize/commit/bee03c1))

##### Features

-   **dropSchema:** support for mssql ([#&#8203;9081](https://togithub.com/sequelize/sequelize/issues/9081)) ([5b6dae7](https://togithub.com/sequelize/sequelize/commit/5b6dae7))

### [`v4.34.1`](https://togithub.com/sequelize/sequelize/releases/v4.34.1)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.34.0...v4.34.1)

##### Bug Fixes

-   **model/upsert:** support options.validation ([#&#8203;8872](https://togithub.com/sequelize/sequelize/issues/8872)) ([191819f](https://togithub.com/sequelize/sequelize/commit/191819f))

### [`v4.34.0`](https://togithub.com/sequelize/sequelize/releases/v4.34.0)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.33.4...v4.34.0)

##### Bug Fixes

-   **sequelize/query:** use hasOwnProperty for keys in query ([#&#8203;9100](https://togithub.com/sequelize/sequelize/issues/9100)) ([#&#8203;9101](https://togithub.com/sequelize/sequelize/issues/9101)) ([222b13f](https://togithub.com/sequelize/sequelize/commit/222b13f))

##### Features

-   **query:** add ability to pass arrays as replacements ([#&#8203;9050](https://togithub.com/sequelize/sequelize/issues/9050)) ([#&#8203;9054](https://togithub.com/sequelize/sequelize/issues/9054)) ([60c04d9](https://togithub.com/sequelize/sequelize/commit/60c04d9))

### [`v4.33.4`](https://togithub.com/sequelize/sequelize/releases/v4.33.4)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.33.3...v4.33.4)

##### Bug Fixes

-   **mssql:** reject if end was called before connect ([#&#8203;9037](https://togithub.com/sequelize/sequelize/issues/9037)) ([e92dc6f](https://togithub.com/sequelize/sequelize/commit/e92dc6f))

### [`v4.33.3`](https://togithub.com/sequelize/sequelize/releases/v4.33.3)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.33.2...v4.33.3)

##### Bug Fixes

-   **indexes:** duplicate unique indexes with sync ([#&#8203;9033](https://togithub.com/sequelize/sequelize/issues/9033)) ([0abea9f](https://togithub.com/sequelize/sequelize/commit/0abea9f))

### [`v4.33.2`](https://togithub.com/sequelize/sequelize/releases/v4.33.2)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.33.1...v4.33.2)

##### Bug Fixes

-   **postgres/connection-manager:** Don't leak OIDs between instances ([#&#8203;9026](https://togithub.com/sequelize/sequelize/issues/9026)) ([d92d0d5](https://togithub.com/sequelize/sequelize/commit/d92d0d5))

### [`v4.33.1`](https://togithub.com/sequelize/sequelize/releases/v4.33.1)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.33.0...v4.33.1)

##### Bug Fixes

-   **escape:** Escape null character in postgres ([#&#8203;9006](https://togithub.com/sequelize/sequelize/issues/9006)) ([7cb7394](https://togithub.com/sequelize/sequelize/commit/7cb7394))

### [`v4.33.0`](https://togithub.com/sequelize/sequelize/releases/v4.33.0)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.32.7...v4.33.0)

##### Features

-   **mysql:** bind parameters ([#&#8203;8861](https://togithub.com/sequelize/sequelize/issues/8861)) ([f8a98a1](https://togithub.com/sequelize/sequelize/commit/f8a98a1))

### [`v4.32.7`](https://togithub.com/sequelize/sequelize/releases/v4.32.7)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.32.6...v4.32.7)

##### Bug Fixes

-   **sequelize/query:** retry entire query ([#&#8203;8991](https://togithub.com/sequelize/sequelize/issues/8991)) ([0cf1911](https://togithub.com/sequelize/sequelize/commit/0cf1911))

### [`v4.32.6`](https://togithub.com/sequelize/sequelize/releases/v4.32.6)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.32.5...v4.32.6)

##### Bug Fixes

-   **model/findOrBuild:** handle includes ([#&#8203;8938](https://togithub.com/sequelize/sequelize/issues/8938)) ([a54a7a5](https://togithub.com/sequelize/sequelize/commit/a54a7a5))

### [`v4.32.5`](https://togithub.com/sequelize/sequelize/releases/v4.32.5)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.32.4...v4.32.5)

##### Bug Fixes

-   remove pg-types from dependencies ([d65a95c](https://togithub.com/sequelize/sequelize/commit/d65a95c))

### [`v4.32.4`](https://togithub.com/sequelize/sequelize/releases/v4.32.4)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.32.3...v4.32.4)

##### Bug Fixes

-   pg@7 incompatibilities ([#&#8203;8979](https://togithub.com/sequelize/sequelize/issues/8979)) ([a9730aa](https://togithub.com/sequelize/sequelize/commit/a9730aa))

### [`v4.32.3`](https://togithub.com/sequelize/sequelize/releases/v4.32.3)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.32.2...v4.32.3)

##### Bug Fixes

-   **model:** omit `offset` in findSeparate ([#&#8203;8987](https://togithub.com/sequelize/sequelize/issues/8987)) ([b545767](https://togithub.com/sequelize/sequelize/commit/b545767))

### [`v4.32.2`](https://togithub.com/sequelize/sequelize/releases/v4.32.2)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.32.1...v4.32.2)

##### Bug Fixes

-   **symbols:** symbols not assigned by lodash.defaults ([#&#8203;8937](https://togithub.com/sequelize/sequelize/issues/8937)) ([0258081](https://togithub.com/sequelize/sequelize/commit/0258081))

### [`v4.32.1`](https://togithub.com/sequelize/sequelize/releases/v4.32.1)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.32.0...v4.32.1)

##### Bug Fixes

-   **selectQuery:** don't add empty HAVING clause ([#&#8203;8931](https://togithub.com/sequelize/sequelize/issues/8931)) ([335efd6](https://togithub.com/sequelize/sequelize/commit/335efd6))

### [`v4.32.0`](https://togithub.com/sequelize/sequelize/releases/v4.32.0)

[Compare Source](https://togithub.com/sequelize/sequelize/compare/v4.31.2...v4.32.0)

##### Features

-   **upsert:** return upserted record with `options.returning=true` ([#&#8203;8924](https://togithub.com/sequelize/sequelize/issues/8924)) ([a4a0f88](https://togithub.com/sequelize/sequelize/commit/a4a0f88))

```js
/**
 * Current behaviour
 */
const created = await Model.upsert(....values....);

/**
 * New feature
 */

// with options.returning = false / undefined
const created = await Model.upsert(....values...., { returning: false });

// with options.returning = true
const [record, created] = await Model.upsert(....values...., { returning: true });

yurikrupnik / node-playground

Update dependency sequelize to v4.44.4 [SECURITY] #3

GitHub Vulnerability Alerts

Bug Fixes

Bug Fixes

Features

Bug Fixes

Bug Fixes

Features

Bug Fixes

Bug Fixes

Bug Fixes

Features

Bug Fixes

Bug Fixes

Bug Fixes

Bug Fixes

Bug Fixes

Bug Fixes

Bug Fixes

Bug Fixes

Features

Features

Features

Bug Fixes

Bug Fixes

Features

Features

Bug Fixes

Bug Fixes

Bug Fixes

Bug Fixes

Bug Fixes

Bug Fixes

Bug Fixes

Features

Features

Features

Features

Features

Features

Bug Fixes

Bug Fixes

Features

Bug Fixes

Features

Features

Bug Fixes

Bug Fixes

Bug Fixes

Bug Fixes

Bug Fixes

Bug Fixes

Bug Fixes

Bug Fixes

Bug Fixes

Bug Fixes

Bug Fixes

Bug Fixes

Features

Features

Bug Fixes

4.11.6 (2017-09-30)