Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump mongoose from 5.13.0 to 6.0.7 in /services/bot #182

Open
wants to merge 5 commits into
base: master
Choose a base branch
from
Open

Bump mongoose from 5.13.0 to 6.0.7 in /services/bot #182

wants to merge 5 commits into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Sep 21, 2021
edited
Loading

Bumps mongoose from 5.13.0 to 6.0.7.

Changelog

Sourced from mongoose's changelog.

6.0.7 / 2021-09-20

  • fix(populate): wrap populate filters in trusted() so they work with sanitizeFilter #10740
  • fix(aggregate): handle calling aggregate() before initial connection succeeds #10722
  • fix(query): avoid throwing error when using $not with $size #10716 IslandRhythms
  • fix(discriminator): handle setting nested discriminator paths #10702
  • fix(documentarray): don't throw TypeError on DocumentArray#create() when top-level doc has populated paths #10749
  • fix(update): avoid setting single nested subdoc defaults if subdoc isn't set #10660
  • fix: delay creating id virtual until right before model compilation to allow plugins to disable the id option #10701
  • fix(connection): correct auth object when using user option to connect() #10727 #10726 saveman71
  • fix(timestamps): avoid calling getters when checking whether createdAt is set #10742 kaishu16
  • fix(index.d.ts): allow using strings for ObjectIds with $in #10735
  • fix(index.d.ts): add TVirtuals generic to Model to make it easier to separate virtuals from DocType #10689
  • fix(index.d.ts): add Model.bulkSave() definition #10745
  • fix(index.d.ts): allow RegExp for match in schema definition #10744 easen-amp
  • fix(index.d.ts): allow arbitrary additional keys in QueryOptions #10688
  • docs: correct TypeScript schema generic params in docs #10739 minifjurt123
  • docs: fix h2 header links #10682 IslandRhythms

6.0.6 / 2021-09-15

  • perf(index.d.ts): streamline SchemaDefinitionType and SchemaTypeOptions to reduce number of instantiations and speed up lib checking #10349
  • perf(document): make $locals a getter/setter, avoid creating unnecessary undefined properties in Document constructor, remove unnecessary event listeners #10400
  • fix(connection): use username parameter for MongoDB driver instead of user #10727 saveman71
  • fix(update): handle casting $or and $and in array filters #10696
  • fix(connection): allow calling connection helpers before calling mongoose.connect() #10706
  • fix(document): correctly handle subpaths of arrays that contain non-alphanumeric chars like - #10709
  • fix(index.d.ts): correct return value for findOneAndUpdate(), findByIdAndUpdate() to support query helpers #10658
  • fix(index.d.ts): add missing methods to ValidationError & ValidatorError classes #10725 medfreeman
  • perf(subdocument): make internal $isSingleNested and $isDocumentArrayElement properties constants on the prototype rather than setting them on every instance #10400
  • docs: improve Document#populate documentation, tests #10728 saveman71

6.0.5 / 2021-09-06

  • fix(model): allow calling Model.validate() static with POJO array #10669
  • fix(cast): let $expr through in query filters if strict mode enabled #10662
  • fix(map): propagate flattenMaps option down to nested maps #10653
  • fix(setDefaultsOnInsert): avoid adding unnecessary auto _id to $setOnInsert #10646
  • fix(schema): support object with values and message syntax for Number enums #10648
  • fix(index.d.ts): fix Document#populate() type #10651 thiagokisaki
  • fix(index.d.ts): allow using $in and $nin on array paths #10605
  • fix(index.d.ts): make _id required in query results and return value from create() #10657
  • docs: update deprecations.md to reflect version 6 #10673 multiwebinc
  • docs: fix typo in queries.md #10681 yogabonito
  • docs: fix typo in models.md #10680 yogabonito
  • ci: add test for ubuntu-20.04 #10679 YC

5.13.9 / 2021-09-06

  • fix(populate): avoid setting empty array on lean document when populate result is undefined #10599

... (truncated)

Commits
  • 3c4f4bb chore: release 6.0.7
  • ae5d06a Merge pull request #10748 from Automattic/doc-subsection-linking
  • 0d92245 Merge branch 'master' into doc-subsection-linking
  • 44612a9 fix(index.d.ts): add Model.bulkSave() definition
  • 0802662 fix(index.d.ts): allow using strings for ObjectIds with $in
  • b98b89a fix(index.d.ts): add TVirtuals generic to Model to make it easier to sepa...
  • 25e4ac3 fix(update): avoid setting single nested subdoc defaults if subdoc isn't set
  • e5b3d5c test(update): repro #10660
  • 7d7d9c0 fix(populate): wrap populate filters in trusted() so they work with `saniti...
  • f5be4c8 style: fix lint
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump mongoose from 5.13.0 to 6.0.7 in /services/bot
8e9a6fb 
Bumps [mongoose](https://github.com/Automattic/mongoose) from 5.13.0 to 6.0.7.
- [Release notes](https://github.com/Automattic/mongoose/releases)
- [Changelog](https://github.com/Automattic/mongoose/blob/master/CHANGELOG.md)
- [Commits](Automattic/mongoose@5.13.0...6.0.7)

---
updated-dependencies:
- dependency-name: mongoose
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Sep 21, 2021
@dependabot dependabot bot mentioned this pull request Sep 21, 2021
Closed
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Sep 28, 2021

A newer version of mongoose exists, but since this PR has been edited by someone other than Dependabot I haven't updated it. You'll get a PR for the updated version as normal once this PR is merged.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@amthorn