[Snyk] Upgrade mongoose from 5.5.14 to 5.10.1 #377

snyk-bot · 2020-09-16T21:44:07Z

Snyk has created this PR to upgrade mongoose from 5.5.14 to 5.10.1.

✨ Snyk has automatically assigned this pull request, set who gets assigned.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 73 versions ahead of your current version.
The recommended version was released 21 days ago, on 2020-08-26.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Information Exposure SNYK-JS-MONGOOSE-472486	509/1000 Why? Has a fix available, CVSS 5.9	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: mongoose

5.10.1 - 2020-08-26
chore: release 5.10.1
5.10.0 - 2020-08-14
chore: release 5.10.0
5.9.29 - 2020-08-13
chore: release 5.9.29
5.9.28 - 2020-08-07
chore: release 5.9.28
5.9.27 - 2020-07-31
chore: release 5.9.27
5.9.26 - 2020-07-27
chore: release 5.9.26
5.9.25 - 2020-07-17
5.9.24 - 2020-07-13
5.9.23 - 2020-07-10
5.9.22 - 2020-07-06
5.9.21 - 2020-07-01
5.9.20 - 2020-06-22
5.9.19 - 2020-06-15
5.9.18 - 2020-06-05
5.9.17 - 2020-06-02
5.9.16 - 2020-05-25
5.9.15 - 2020-05-18
5.9.14 - 2020-05-13
5.9.13 - 2020-05-08
5.9.12 - 2020-05-04
5.9.11 - 2020-04-30
5.9.10 - 2020-04-20
5.9.9 - 2020-04-13
5.9.7 - 2020-03-30
5.9.6 - 2020-03-23
5.9.5 - 2020-03-16
5.9.4 - 2020-03-09
5.9.3 - 2020-03-02
5.9.2 - 2020-02-21
5.9.1 - 2020-02-14
5.9.0 - 2020-02-13
5.8.13 - 2020-02-13
5.8.12 - 2020-02-12
5.8.11 - 2020-01-31
5.8.10 - 2020-01-27
5.8.9 - 2020-01-17
5.8.7 - 2020-01-10
5.8.6 - 2020-01-08
5.8.5 - 2020-01-06
5.8.4 - 2020-01-02
5.8.3 - 2019-12-23
5.8.2 - 2019-12-20
5.8.1 - 2019-12-12
5.8.0 - 2019-12-09
5.7.14 - 2019-12-06
5.7.13 - 2019-11-29
5.7.12 - 2019-11-19
5.7.11 - 2019-11-14
5.7.10 - 2019-11-11
5.7.9 - 2019-11-08
5.7.8 - 2019-11-05
5.7.7 - 2019-10-24
5.7.6 - 2019-10-21
5.7.5 - 2019-10-14
5.7.4 - 2019-10-09
5.7.3 - 2019-09-30
5.7.1 - 2019-09-13
5.7.0 - 2019-09-09
5.6.13 - 2019-09-06
5.6.12 - 2019-09-03
5.6.11 - 2019-08-25
5.6.10 - 2019-08-21
5.6.9 - 2019-08-07
5.6.8 - 2019-08-02
5.6.7 - 2019-07-26
5.6.6 - 2019-07-22
5.6.5 - 2019-07-17
5.6.4 - 2019-07-08
5.6.3 - 2019-07-03
5.6.2 - 2019-06-28
5.6.1 - 2019-06-24
5.6.0 - 2019-06-14
5.5.15 - 2019-06-12
5.5.14 - 2019-06-08

from mongoose GitHub release notes

Commit messages

Package name: mongoose

6ec173b chore: release 5.10.1
5629fac fix(model): dont wipe out changes made while `save()` is in-flight
1b416bb test(model): repro #9327
1e76f70 fix(populate): skip checking `refPath` if the path to populate is undefined
66ba2ec test(populate): repro #9340
fadc813 fix(mongoose): fix `.then()` is not a function error when calling `mongoose.connect()` multiple times
0b8c6a1 fix(model): skip applying init hook if called with `schema.pre(..., { document: false })`
d56059a test(model): repro #9316
0b46829 fix(document): allow accessing document values from function `default` on array
ae5d739 test(document): repro #9351
43a840d Merge branch 'master' of github.com:Automattic/mongoose
0bdac75 fix: allow calling `create()` after `bulkWrite()` by clearing internal casting context
56fb748 test: repro #9350
a63b611 docs(model): use createIndex correctly
9bdb820 Merge pull request #9337 from FelixRe0/master
b1bf6f0 Merge pull request #9332 from moander/patch-1
1256d77 docs: add note about using `ref` as function
19a7eb4 chore: update opencollective sponsors
01b48b5 Fixed code style
bf1a9b4 Add regression test for Issue #9336
08a30c7 Fix: Retaining null value for populated documents when _id is suppressed
49057fa Updated connect example to avoid deprecation warnings
25cdb95 chore: release 5.10.0
8b8fea6 Merge pull request #9321 from Automattic/5.10