Skip to content

Bump mquery and mongoose#55

Open
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/npm_and_yarn/mquery-and-mongoose-5.0.0
Open

Bump mquery and mongoose#55
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/npm_and_yarn/mquery-and-mongoose-5.0.0

Conversation

@dependabot
Copy link
Copy Markdown

@dependabot dependabot Bot commented on behalf of github Apr 18, 2023

Bumps mquery to 5.0.0 and updates ancestor dependency mongoose. These dependencies need to be updated together.

Updates mquery from 2.3.3 to 5.0.0

Changelog

Sourced from mquery's changelog.

5.0.0 / 2023-02-23

  • BREAKING CHANGE: drop callback support #137 hasezoey
  • BREAKING CHANGE: remove custom promise library support #137 hasezoey
  • BREAKING CHANGE: remove long deprecated update, remove functions #136 hasezoey
  • BREAKING CHANGE: remove collection ducktyping: first param to mquery() is now always the query filter #138
  • feat: support MongoDB Node driver 5 #137 hasezoey

4.0.3 / 2022-05-17

  • fix: allow using comment with findOneAndUpdate(), count(), distinct() and hint with findOneAndUpdate() Automattic/mongoose#11793

4.0.2 / 2022-01-23

  • perf: replace regexp-clone with native functionality #131 Uzlopak

4.0.1 / 2022-01-20

4.0.0 / 2021-08-24

4.0.0-rc0 / 2021-08-19

  • BREAKING CHANGE: drop support for Node < 12 #123
  • BREAKING CHANGE: upgrade to mongodb driver 4.x: drop support for findAndModify(), use native findOneAndUpdate/Delete #124
  • BREAKING CHANGE: rename findStream -> findCursor #124
  • BREAKING CHANGE: use native ES6 promises by default, remove bluebird dependency #123

3.2.5 / 2021-03-29

  • fix(utils): make mergeClone() skip special properties like __proto__ #121 zpbrent

3.2.4 / 2021-02-12

3.2.3 / 2020-12-10

  • fix(utils): avoid copying special properties like __proto__ when merging and cloning. Fix CVE-2020-35149

3.2.2 / 2019-09-22

3.2.1 / 2018-08-24

  • chore: upgrade deps

... (truncated)

Commits
  • e7a8a30 chore: release 5.0.0
  • e5f272f Merge pull request #138 from mongoosejs/vkarpov15/remove-ducktyping
  • 3aba080 BREAKING CHANGE: remove support for mquery(collection), first param is alwa...
  • f94d1a8 fix couple of merge conflicts from #136
  • 9b403f1 Merge pull request #136 from hasezoey/removeOldQueryFn
  • cb7970a Merge branch 'master' into removeOldQueryFn
  • a601c6c Merge pull request #137 from hasezoey/updateMongoDriver
  • 6ec7d36 feat: remove node 12 support
  • b6dca74 chore(package.json): actually let mocha exit after finished
  • b492398 docs(README): de-duplicate header names
  • Additional commits viewable in compare view

Updates mongoose from 4.13.21 to 7.0.4

Release notes

Sourced from mongoose's releases.

7.0.4 / 2023-04-17

7.0.3 / 2023-03-23

  • fix(query): avoid executing transforms if query wasn't executed #13185 #13165
  • fix(schema): make creating top-level virtual underneath subdocument equivalent to creating virtual on the subdocument #13197 #13189
  • fix(timestamps): set timestamps on empty replaceOne() #13196 #13170
  • fix(types): change return type of lean() to include null if nullable #13155 #13151 lpizzinidev
  • fix(types): fixed type of DocumentArray constructor parameter #13183 #13087 lpizzinidev
  • docs: refactor header naming to lessen conflicts #12901 hasezoey
  • docs: change header levels to be consistent across files #13173 hasezoey

7.0.2 / 2023-03-15

7.0.1 / 2023-03-06

  • fix(aggregate): added await to prevent exception in aggregate exec #13126 lpizzinidev
  • fix(types): handle Record as value for HydratedDocument TOverrides parameter #13123 #13094
  • fix(types): remove "update" function #13120 hasezoey
  • docs(compatibility): added mongoDB server compatibility for mongoose 7 #13102 lpizzinidev
  • docs: Updated callback method for Model.findOne() #13096 Arghyahub
  • chore: update github actions to not use ubuntu-18.04 anymore #13137 hasezoey

7.0.0 / 2023-02-27

  • BREAKING CHANGE: copy schema options when merging schemas using new Schema() or Schema.prototype.add() #13092
  • feat(types): export mongodb types more robustly #12948 simon-abbott
  • docs: fix populate docs #13090 hasezoey
  • docs(migrating_to_6): added info about removal of reconnectTries and reconnectInterval options #13083 lpizzinidev

7.0.0-rc0 / 2023-02-23

... (truncated)

Changelog

Sourced from mongoose's changelog.

7.0.4 / 2023-04-17

6.10.5 / 2023-04-06

  • perf(document): avoid unnecessary loops, conditionals, string manipulation on Document.prototype.get() for 10x speedup on top-level properties #12953
  • fix(model): execute valid write operations if calling bulkWrite() with ordered: false #13218 #13176
  • fix(array): pass-through all parameters #13202 #13201 hasezoey
  • fix: improve error message when sorting by empty string #13249 #10182
  • docs: add version support and check version docs #13251 #13193

5.13.17 / 2023-04-04

  • fix: backport fix for array filters handling $or and $and #13195 #13192 #10696 raj-goguardian
  • fix: update the isIndexEqual function to take into account non-text indexes when checking compound indexes that include both text and non-text indexes #13138 #13136 rdeavila94

7.0.3 / 2023-03-23

  • fix(query): avoid executing transforms if query wasn't executed #13185 #13165
  • fix(schema): make creating top-level virtual underneath subdocument equivalent to creating virtual on the subdocument #13197 #13189
  • fix(timestamps): set timestamps on empty replaceOne() #13196 #13170
  • fix(types): change return type of lean() to include null if nullable #13155 #13151 lpizzinidev
  • fix(types): fixed type of DocumentArray constructor parameter #13183 #13087 lpizzinidev
  • docs: refactor header naming to lessen conflicts #12901 hasezoey
  • docs: change header levels to be consistent across files #13173 hasezoey

6.10.4 / 2023-03-21

  • fix(document): apply setters on resulting value when calling Document.prototype.$inc() #13178 #13158
  • fix(model): add results property to unordered insertMany() to make it easy to identify exactly which documents were inserted #13163 #12791
  • docs(guide+schematypes): add UUID to schematypes guide #13184

7.0.2 / 2023-03-15

  • fix: validate array elements when passing array path to validateSync() in pathsToValidate #13167 #13159
  • fix(schema): propagate typeKey down to implicitly created subdocuments #13164 #13154
  • fix(types): add index param to eachAsync fn #13153 krosenk729
  • fix(types/documentarray): type DocumentArray constructor parameter as object #13089 #13087 lpizzinidev
  • fix(types): type query select() as string, string[], or record; not any #13146 #13142 rbereziuk
  • fix(types/query): change QueryOptions lean type to Record #13150 lpizzinidev
  • docs: add and run eslint-plugin-markdown #13156 hasezoey
  • docs(generateSearch): fix search generation for API #13161 hasezoey
  • docs(generateSearch): move config missing error to require #13160 hasezoey

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump mquery and mongoose
10a3c2f 
Bumps [mquery](https://github.com/aheckmann/mquery) to 5.0.0 and updates ancestor dependency [mongoose](https://github.com/Automattic/mongoose). These dependencies need to be updated together.


Updates `mquery` from 2.3.3 to 5.0.0
- [Release notes](https://github.com/aheckmann/mquery/releases)
- [Changelog](https://github.com/mongoosejs/mquery/blob/master/History.md)
- [Commits](mongoosejs/mquery@2.3.3...5.0.0)

Updates `mongoose` from 4.13.21 to 7.0.4
- [Release notes](https://github.com/Automattic/mongoose/releases)
- [Changelog](https://github.com/Automattic/mongoose/blob/master/CHANGELOG.md)
- [Commits](Automattic/mongoose@4.13.21...7.0.4)

---
updated-dependencies:
- dependency-name: mquery
  dependency-type: indirect
- dependency-name: mongoose
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label Apr 18, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants