Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Upgrade mongoose from 5.10.5 to 5.13.16 #25

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

[Snyk] Upgrade mongoose from 5.10.5 to 5.13.16 #25

wants to merge 1 commit into from

Conversation

AlbertoCime14
Copy link
Owner

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade mongoose from 5.10.5 to 5.13.16.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 68 versions ahead of your current version.
  • The recommended version was released 22 days ago, on 2023-02-20.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
Prototype Pollution
SNYK-JS-MONGOOSE-2961688		 671/1000
Why? Proof of Concept exploit, Has a fix available, CVSS 7		 Proof of Concept
Prototype Pollution
SNYK-JS-MQUERY-1050858		 671/1000
Why? Proof of Concept exploit, Has a fix available, CVSS 7		 Proof of Concept
Prototype Pollution
SNYK-JS-MQUERY-1089718		 671/1000
Why? Proof of Concept exploit, Has a fix available, CVSS 7		 Proof of Concept
Prototype Pollution
SNYK-JS-MONGOOSE-1086688		 671/1000
Why? Proof of Concept exploit, Has a fix available, CVSS 7		 Proof of Concept
Prototype Pollution
SNYK-JS-MPATH-1577289		 671/1000
Why? Proof of Concept exploit, Has a fix available, CVSS 7		 Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes
Package name: mongoose
  • 5.13.16 - 2023-02-20

    chore: release 5.13.16

  • 5.13.15 - 2022-08-22
  • 5.13.14 - 2021-12-27
  • 5.13.13 - 2021-11-02
  • 5.13.12 - 2021-10-19
  • 5.13.11 - 2021-10-12
  • 5.13.10 - 2021-10-05
  • 5.13.9 - 2021-09-06
  • 5.13.8 - 2021-08-23
  • 5.13.7 - 2021-08-11
  • 5.13.6 - 2021-08-09
  • 5.13.5 - 2021-07-30
  • 5.13.4 - 2021-07-28
  • 5.13.3 - 2021-07-16
  • 5.13.2 - 2021-07-03
  • 5.13.1 - 2021-07-02
  • 5.13.0 - 2021-06-28
  • 5.12.15 - 2021-06-25
  • 5.12.14 - 2021-06-15
  • 5.12.13 - 2021-06-04
  • 5.12.12 - 2021-05-28
  • 5.12.11 - 2021-05-24
  • 5.12.10 - 2021-05-18
  • 5.12.9 - 2021-05-13
  • 5.12.8 - 2021-05-10
  • 5.12.7 - 2021-04-29
  • 5.12.6 - 2021-04-27
  • 5.12.5 - 2021-04-19
  • 5.12.4 - 2021-04-15
  • 5.12.3 - 2021-03-31
  • 5.12.2 - 2021-03-22
  • 5.12.1 - 2021-03-18
  • 5.12.0 - 2021-03-11
  • 5.11.20 - 2021-03-11
  • 5.11.19 - 2021-03-05
  • 5.11.18 - 2021-02-23
  • 5.11.17 - 2021-02-17
  • 5.11.16 - 2021-02-12
  • 5.11.15 - 2021-02-03
  • 5.11.14 - 2021-01-28
  • 5.11.13 - 2021-01-20
  • 5.11.12 - 2021-01-14
  • 5.11.11 - 2021-01-08
  • 5.11.10 - 2021-01-04
  • 5.11.9 - 2020-12-28
  • 5.11.8 - 2020-12-14
  • 5.11.7 - 2020-12-10
  • 5.11.6 - 2020-12-09
  • 5.11.5 - 2020-12-07
  • 5.11.4 - 2020-12-04
  • 5.11.3 - 2020-12-03
  • 5.11.2 - 2020-12-02
  • 5.11.1 - 2020-12-01
  • 5.11.0 - 2020-11-30
  • 5.10.19 - 2020-11-30
  • 5.10.18 - 2020-11-29
  • 5.10.17 - 2020-11-27
  • 5.10.16 - 2020-11-25
  • 5.10.15 - 2020-11-16
  • 5.10.14 - 2020-11-12
  • 5.10.13 - 2020-11-06
  • 5.10.12 - 2020-11-04
  • 5.10.11 - 2020-10-26
  • 5.10.10 - 2020-10-23
  • 5.10.9 - 2020-10-09
  • 5.10.8 - 2020-10-05
  • 5.10.7 - 2020-09-24
  • 5.10.6 - 2020-09-18
  • 5.10.5 - 2020-09-11
from mongoose GitHub release notes
Commit messages
Package name: mongoose
  • e76c41c chore: release 5.13.16
  • cdab11e chore: remove Node 5 and 7 from CI because GitHub actions is bugging out with them
  • e33a8be fix(types): add missing typedefs for bulkSave() to 5.x
  • 896cd76 Merge pull request #12692 from hasezoey/backportLinkUpdate
  • 9caa847 chore: remove test from #12584 because it causes test failures
  • 41a2ea3 chore: remove browser build from tests
  • 3715c05 chore: fix browser build on old node re: https://github.com/2.7 introduces Unexpected Token error on our build webpack/schema-utils#103
  • 78d9d91 Merge pull request #12584 from maciasello/fix/gh-11943
  • aef4c7b docs: quick fix for search re: #12830
  • 48179b4 chore: search fixes
  • c3384bc docs: fix search re: #12830
  • fd1fa9d docs: backport #12830 to 5.x
  • 0c75a1f add version to 5.x docs search build re: #12548
  • 2a08814 Merge pull request #12677 from rdeavilafloqast/gh-12676
  • 0cd01da docs: change "/docs/" links to be relative
  • 8b306eb docs: change relative links to no-prefix links
  • 9ca46d1 docs: backport static links to relative
  • 1a2d7f8 chore(gitignore): use gitignore from current master
  • 0096c3d Safely handling NamespaceNotFound errors when calling diffIndexes on model with no documents
  • f81f462 fix: make nodeMajorVersion calculation lazy so that it works in a browser environment
  • 4608748 test: add test for gh-11943
  • d962724 fix: allow running browser.test.js in isolation
  • ca7996b chore: release 5.13.15
  • e75732a Merge pull request #12307 from Automattic/vkarpov15/fix-5x-build

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@AlbertoCime14 @snyk-bot