[Snyk] Upgrade mongoose from 7.6.4 to 7.6.8

[wkylin]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade mongoose from 7.6.4 to 7.6.8.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 4 versions ahead of your current version.
• The recommended version was released 2 months ago, on 2024-01-08.

Release notes

Package name: mongoose

• 7.6.8 - 2024-01-08
• 7.6.7 - 2023-12-06
• 7.6.6 - 2023-11-27
• 7.6.5 - 2023-11-14
• 7.6.4 - 2023-10-30

from mongoose GitHub release notes

Commit messages

Package name: mongoose

• ac9af5b docs: add unnecessary lookahead fix to changelog
• 6ffb123 chore: release 7.6.8
• 7248bdf Merge branch '6.x' into 7.x
• 2d68983 chore: release 6.12.5
• b4e3b2f Merge pull request #14213 from Automattic/vkarpov15/gh-14024
• 0960fae types(document): add ignoreAtomics option to isModified typedefs re: #14024
• f7e9816 docs(document): add ignoreAtomics option to docs
• e3c12cf types(model): add missing strict and timestamps options to bulkWrite() re: #8778
• f37b4f2 Merge pull request #14226 from Automattic/vkarpov15/gh-14205
• b286b02 fix: also allow setting nested field to undefined re: #14205
• 6d526cd fix(document): allow setting nested path to `null`
• 403a28e fix: add ignoreAtomics option to isModified() for better backwards compatibility with Mongoose 5
• 3e60145 perf(schema): remove unnecessary lookahead in numeric subpath check
• 8e141d1 perf(schema): remove unnecessary lookahead in numeric subpath check
• 3a015f9 Merge pull request #14202 from Automattic/vkarpov15/gh-14162
• 94de74f Merge pull request #14206 from Automattic/vkarpov15/gh-14177
• 50b0078 style: remove unnecessary comment
• 4b77619 Merge branch '7.x' into vkarpov15/gh-14177
• 485f155 test: fix deno tests
• 0e7ec7f test: try closing change stream to avoid test failure
• 0199c8b fix(ChangeStream): avoid suppressing errors in closed change stream
• e182fe5 Merge pull request #14198 from Automattic/vkarpov15/gh-14178
• dabb2cf style: fix lint
• e4f4c32 fix(discriminator): handle reusing schema with embedded discriminators defined using Schema.prototype.discriminator

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
pro-react-admin	❌ Failed (Inspect)			Mar 15, 2024 1:35am

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
No data about Coverage
0.0% Duplication on New Code

See analysis details on SonarCloud

[what-the-diff]

PR摘要

• 更改一： "mongoose"版本更新
  我们在package-lock.json文件中将"mongoose"的版本从"7.6.4"更新至"7.6.8"，这将帮助我们优化代码库，提高程序的性能和安全性。
• 更改二： "@mongodb-js/saslprep"版本更新
  这次，我们在package-lock.json文件中更新了"@mongodb-js/saslprep"的版本，从"1.1.1"更新至"1.1.5"，这样可以提高我们数据处理和传输的效率。
• 更改三： "@types/node"版本更新
  在package-lock.json文件中，我们把"@types/node"的版本从"20.8.10"更新至"20.11.27"，这个更改将可让我们更好地充分利用Node.js的特性，改善我们的代码效率和质量。
• 更改四： "@types/webidl-conversions"版本更新
  我们在package-lock.json文件中，将"@types/webidl-conversions"的版本从"7.0.2"更新至"7.0.3"，这将有助于我们在实现更加灵活和高效的数据转换。
• 更改五： "ip-address"版本更新
  我们在package-lock.json文件中将"ip-address"的版本从"2.0.1"更新至"9.0.5"，这个更新可以增强我们程序处理IP地址信息的能力。
• 更改六： "jsbn"版本添加
  我们在package-lock.json文件加入了"jsbn"的"1.1.0"版本，这将有助于我们实现高效的大数计算。
• 更改七： "mongodb"版本更新
  我们在package-lock.json文件中将"mongodb"的版本从"5.9.0"更新至"5.9.1"，这将进一步提高我们程序的数据处理能力和效率。
• 更改八： "socks"版本更新
  在package-lock.json文件中，我们将"socks"的版本更新，从"2.7.1"变为"2.8.1"，以更有效地处理网络请求。
• **更改九： "sprintf-js"版本添加 **
  我们在package-lock.json文件添加了"sprintf-js"的"1.1.3"版本，这将增强我们格式化字符串的能力。
• 更改十： "mongoose"版本更新
  最后，在package.json文件中，我们将"mongoose"的版本从"^7.6.4"更新至"^7.6.8"，以提供更稳定和高效的数据建模。