[Snyk] Upgrade mongoose from 6.12.0 to 8.0.3

[lholmquist]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade mongoose from 6.12.0 to 8.0.3.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

Warning: This is a major version upgrade, and may be a breaking change.

• The recommended version is 49 versions ahead of your current version.
• The recommended version was released a month ago, on 2023-12-07.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-FASTXMLPARSER-5668858	375/1000 Why? CVSS 7.5	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: mongoose

• 8.0.3 - 2023-12-07
  

  8.0.3 / 2023-12-07

  • fix(schema): avoid creating unnecessary clone of schematype in nested array so nested document arrays use correct constructor #14128 #14101
  • docs(connections): add example of registering connection event handlers #14150
  • docs(populate): add example of using refPath and ref functions #14133 #13834
  • types: handle using BigInt global class in schema definitions #14160 #14147
  • types: make findOneAndDelete() without options return result doc, not ModifyResult #14153 #14130
  • types(model): add no-generic override for insertMany() with options #14152 #13999
  • types: add missing Type for applyDefaults #14159 jaypea
• 8.0.2 - 2023-11-28
  

  8.0.2 / 2023-11-28

  • fix(populate): set populated docs in correct order when populating virtual underneath doc array with justOne #14105
  • fix(populate): fix curPath to update appropriately #14099 #14098 csy1204
  • types: make property names show up in intellisense for UpdateQuery #14123 #14090
  • types(document): correct return type for doc.deleteOne() re: Mongoose 8 breaking change #14110 #14081
  • types: correct types for when includeResultMetadata: true is set #14078
  • types(models): allow specifying timestamps as inline option for bulkWrite() operations #14112 #14072
  • docs: fix rendering of 7.x server compatibility #14086 laupow
  • docs(source/api): fix "index.js" -> "mongoose.js" rename #14125
  • docs(README): update breaking change version #14126
• 8.0.1 - 2023-11-15
  

  8.0.1 / 2023-11-15

  • fix: retain key order with aliases when creating indexes with alias #14042 meabed
  • fix: handle nonexistent collection with diffIndexes #14029 #14010
  • types(model+query): correctly remove count from TypeScript types to reflect removal of runtime support #14076 #14067 #14062
  • types: correct this parameter for methods and statics #14028 #14027 ruxxzebre
  • types(model+query): unpack arrays in distinct return type #14047 #14026
  • types: add missing Types.UUID typings #14023 #13103 k725
  • docs: add mongoose 8 to mongodb server compatibility guide #14064
  • docs: fix typo in queries.md #14065 MuhibAhmed
• 8.0.0 - 2023-10-31
  

  8.0.0 / 2023-10-31

  • docs: add version support notes for Mongoose 8, including EOL date for Mongoose 6
• 8.0.0-rc0 - 2023-10-24
• 7.6.7 - 2023-12-06
  

  chore: release 7.6.7

• 7.6.6 - 2023-11-27
  

  chore: release 7.6.6

• 7.6.5 - 2023-11-14
  

  chore: release 7.6.5

• 7.6.4 - 2023-10-30
• 7.6.3 - 2023-10-17
• 7.6.2 - 2023-10-13
• 7.6.1 - 2023-10-09
• 7.6.0 - 2023-10-06
• 7.5.4 - 2023-10-04
• 7.5.3 - 2023-09-25
• 7.5.2 - 2023-09-15
• 7.5.1 - 2023-09-11
• 7.5.0 - 2023-08-29
• 7.4.5 - 2023-08-25
• 7.4.4 - 2023-08-22
• 7.4.3 - 2023-08-11
• 7.4.2 - 2023-08-03
• 7.4.1 - 2023-07-24
• 7.4.0 - 2023-07-18
• 7.3.4 - 2023-07-12
• 7.3.3 - 2023-07-11
• 7.3.2 - 2023-07-06
• 7.3.1 - 2023-06-21
• 7.3.0 - 2023-06-14
• 7.2.4 - 2023-06-12
• 7.2.3 - 2023-06-09
• 7.2.2 - 2023-05-30
• 7.2.1 - 2023-05-24
• 7.2.0 - 2023-05-19
• 7.1.2 - 2023-05-19
• 7.1.1 - 2023-05-10
• 7.1.0 - 2023-04-27
• 7.0.5 - 2023-04-24
• 7.0.4 - 2023-04-17
• 7.0.3 - 2023-03-23
• 7.0.2 - 2023-03-15
• 7.0.1 - 2023-03-06
• 7.0.0 - 2023-02-27
• 7.0.0-rc0 - 2023-02-23
• 6.12.5 - 2024-01-03
  

  chore: release 6.12.5

• 6.12.4 - 2023-12-27
  

  chore: release 6.12.4

• 6.12.3 - 2023-11-07
• 6.12.2 - 2023-10-25
• 6.12.1 - 2023-10-12
• 6.12.0 - 2023-08-24

from mongoose GitHub release notes

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[coveralls]

Pull Request Test Coverage Report for Build 7425575698

• 0 of 0 changed or added relevant lines in 0 files are covered.
• No unchanged relevant lines lost coverage.
• Overall coverage increased (+35.1%) to 35.088%

---

Totals
Change from base Build 7409750230:	35.1%
Covered Lines:	20
Relevant Lines:	51

---

💛 - Coveralls