From 5a6f6d55ffe4ad543a0f8f25384d7a663f6ab737 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 1 Jul 2024 17:55:58 +0000
Subject: [PATCH] fix(deps): Bump mongoose from 8.4.3 to 8.4.4 (#354)
Bumps [mongoose](https://github.com/Automattic/mongoose) from 8.4.3 to 8.4.4.
Release notes
Sourced from mongoose's releases.
8.4.4 / 2024-06-25
- perf: avoid unnecesary get() call and use faster approach for converting to string #14673 #14394
- fix(projection): handle projections on arrays in Model.hydrate() projection option #14686 #14680
- fix(document): avoid passing validateModifiedOnly to subdocs so subdocs get fully validating if they're directly modified #14685 #14677
- fix: handle casting primitive array with $elemMatch in bulkWrite() #14687 #14678
- fix(query): cast $pull using embedded discriminator schema when discriminator key is set in filter #14676 #14675
- types(connection): fix return type of withSession() #14690 tt-public
- types: add $documents pipeline stage and fix $unionWith type #14666 nick-statsig
- docs(findoneandupdate): improve example that shows findOneAndUpdate() returning doc before updates were applied #14671 #14670
Changelog
Sourced from mongoose's changelog.
8.4.4 / 2024-06-25
- perf: avoid unnecesary get() call and use faster approach for converting to string #14673 #14394
- fix(projection): handle projections on arrays in Model.hydrate() projection option #14686 #14680
- fix(document): avoid passing validateModifiedOnly to subdocs so subdocs get fully validating if they're directly modified #14685 #14677
- fix: handle casting primitive array with $elemMatch in bulkWrite() #14687 #14678
- fix(query): cast $pull using embedded discriminator schema when discriminator key is set in filter #14676 #14675
- types(connection): fix return type of withSession() #14690 tt-public
- types: add $documents pipeline stage and fix $unionWith type #14666 nick-statsig
- docs(findoneandupdate): improve example that shows findOneAndUpdate() returning doc before updates were applied #14671 #14670
Commits
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
---
package-lock.json | 8 ++++----
package.json | 2 +-
2 files changed, 5 insertions(+), 5 deletions(-)
diff --git a/package-lock.json b/package-lock.json
index 894582a..08c6c13 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -15,7 +15,7 @@
"axios": "^1.6.8",
"env-var": "^7.5.0",
"fast-crc32c": "^2.0.0",
- "mongoose": "^8.4.3",
+ "mongoose": "^8.4.4",
"webcrypto-core": "< 2.0"
},
"devDependencies": {
@@ -6717,9 +6717,9 @@
}
},
"node_modules/mongoose": {
- "version": "8.4.3",
- "resolved": "https://registry.npmjs.org/mongoose/-/mongoose-8.4.3.tgz",
- "integrity": "sha512-GxPVLD+I/dxVkgcts2r2QmJJvS62/++btVj3RFt8YnHt+DSOp1Qjj62YEvgZaElwIOTcc4KGJM95X5LlrU1qQg==",
+ "version": "8.4.4",
+ "resolved": "https://registry.npmjs.org/mongoose/-/mongoose-8.4.4.tgz",
+ "integrity": "sha512-Nya808odIJoHP4JuJKbWA2eIaerXieu59kE8pQlvJpUBoSKWUyhLji0g1WMVaYXWmzPYXP2Jd6XdR4KJE8RELw==",
"dependencies": {
"bson": "^6.7.0",
"kareem": "2.6.3",
diff --git a/package.json b/package.json
index 0c0e8ca..5f3e5ef 100644
--- a/package.json
+++ b/package.json
@@ -44,7 +44,7 @@
"axios": "^1.6.8",
"env-var": "^7.5.0",
"fast-crc32c": "^2.0.0",
- "mongoose": "^8.4.3",
+ "mongoose": "^8.4.4",
"webcrypto-core": "< 2.0"
},
"peerDependencies": {