Skip to content

Bump the production-dependencies group across 1 directory with 3 updates #197

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Bump the production-dependencies group across 1 directory with 3 updates #197

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jun 13, 2025
edited
Loading

Updates the requirements on mongoose, openai and zod to permit the latest version.
Updates mongoose to 8.15.2

Release notes

Sourced from mongoose's releases.

8.15.2 / 2025-06-12

  • fix(document+schema): improve handling for setting paths underneath maps, including maps of maps #15477 #15461
  • fix: report default paths in VersionError message because they can can cause VersionError #15464
  • fix(updateValidators): ensure update validators only call validators underneath single nested paths once #15446 #15436
  • fix: fix validation for deeply nested maps of subdocuments #15469 #15447 AbdelrahmanHafez
  • fix(DocumentArray): correctly set parent if instantiated with schema from another Mongoose instance #15471 #15466
  • types(model): use ProjectionType for Model.hydrate() #15447 #15443
Changelog

Sourced from mongoose's changelog.

8.15.2 / 2025-06-12

  • fix(document+schema): improve handling for setting paths underneath maps, including maps of maps #15477 #15461
  • fix: report default paths in VersionError message because they can can cause VersionError #15464
  • fix(updateValidators): ensure update validators only call validators underneath single nested paths once #15446 #15436
  • fix: fix validation for deeply nested maps of subdocuments #15469 #15447 AbdelrahmanHafez
  • fix(DocumentArray): correctly set parent if instantiated with schema from another Mongoose instance #15471 #15466
  • types(model): use ProjectionType for Model.hydrate() #15447 #15443

8.15.1 / 2025-05-26

8.15.0 / 2025-05-16

  • feat: CSFLE support #15390 baileympearson
  • feat: add strictFilter option to findOneAndUpdate (#14913) #15402 #14913 muazahmed-dev
  • feat(error): set cause to MongoDB error reason on ServerSelection errors #15420 #15416
  • fix(model): make bulkSave() rely on document.validateSync() to validate docs and skip bulkWrite casting #15415 #15410
  • types: stricter projection typing with 1-level deep nesting #15418 #15327 #13840 pshaddel
  • docs: emphasize automatic type inference in TypeScript intro and statics/methods, remove duplicated statics.md #15421

8.14.3 / 2025-05-13

8.14.2 / 2025-05-08

  • fix(query): handle casting array filter paths underneath array filter paths with embedded discriminators #15388 #15386
  • docs(typescript): correct schema and model generic params in TS virtuals docs #15391
  • docs+types(schema): add alternative optimisticConcurrency syntaxes to docs + types #15405 #10591
  • chore: add Node 24 to CI matrix #15408 stscoundrel

7.8.7 / 2025-04-30

8.14.1 / 2025-04-29

  • fix: correct change tracking with maps of arrays of primitives and maps of maps #15374 #15350
  • fix(populate): consistently convert Buffer representation of UUID to hex string to avoid confusing populate assignment #15383 #15382
  • docs: add TypeScript Query guide with info on lean() + transform() #15377 #15311

8.14.0 / 2025-04-25

... (truncated)

Commits

Updates openai to 5.3.0

Release notes

Sourced from openai's releases.

v5.3.0

5.3.0 (2025-06-10)

Full Changelog: v5.2.0...v5.3.0

Features

  • api: Add o3-pro model IDs (9988f8e)
Changelog

Sourced from openai's changelog.

5.3.0 (2025-06-10)

Full Changelog: v5.2.0...v5.3.0

Features

  • api: Add o3-pro model IDs (9988f8e)

5.2.0 (2025-06-09)

Full Changelog: v5.1.1...v5.2.0

Features

  • api: Add tools and structured outputs to evals (64844f1)

Bug Fixes

  • changelog: remove duplicated entries (18484cc)

Chores

  • avoid type error in certain environments (44ac3d9)

Documentation

5.1.1 (2025-06-05)

Full Changelog: v5.1.0...v5.1.1

Bug Fixes

  • assistants: handle thread.run.incomplete while streaming (8f5e7f3)

Chores

  • docs: use top-level-await in example snippets (065d3b0)
  • internal: fix readablestream types in node 20 (771ae81)

5.1.0 (2025-06-03)

Full Changelog: v5.0.2...v5.1.0

Features

... (truncated)

Commits
  • f4f5fde Merge pull request #1541 from openai/release-please--branches--master--change...
  • 5a83783 release: 5.3.0
  • 9988f8e feat(api): Add o3-pro model IDs
  • a9e959f Merge pull request #1535 from openai/release-please--branches--master--change...
  • f5dee4e release: 5.2.0
  • 64844f1 feat(api): Add tools and structured outputs to evals
  • b3d488f docs(changelog): reference MIGRATION.md
  • 18484cc fix(changelog): remove duplicated entries
  • 44ac3d9 chore: avoid type error in certain environments
  • d758def Merge pull request #1529 from openai/release-please--branches--master--change...
  • Additional commits viewable in compare view

Updates zod to 3.25.64

Release notes

Sourced from zod's releases.

v3.25.64

Commits:

  • b142ea8fbb9e41f8251a36ba687b90a316f65fa4 Fix $strip
  • b6e59c37a0a463f90e91453a4d6b2b3db8cdbc53 Check for existence of Error.captureStackTrace
  • 0c686afdc95a324330a60315c59189fa09d8c497 Remove type from mime issue path
  • af88d743a7f6b8c1f5a2d43e3282c976833eeee7 Fix test
Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jun 13, 2025
@snyk-io Snyk.io
Copy link

snyk-io bot commented Jun 13, 2025
edited
Loading

🎉 Snyk checks have passed. No issues have been found so far.

security/snyk check is complete. No issues have been found. (View Details)

@dependabot
Bump the production-dependencies group across 1 directory with 3 updates
bbf9500 
Updates the requirements on [mongoose](https://github.com/Automattic/mongoose), [openai](https://github.com/openai/openai-node) and [zod](https://github.com/colinhacks/zod) to permit the latest version.

Updates `mongoose` to 8.15.2
- [Release notes](https://github.com/Automattic/mongoose/releases)
- [Changelog](https://github.com/Automattic/mongoose/blob/master/CHANGELOG.md)
- [Commits](Automattic/mongoose@8.15.1...8.15.2)

Updates `openai` to 5.3.0
- [Release notes](https://github.com/openai/openai-node/releases)
- [Changelog](https://github.com/openai/openai-node/blob/master/CHANGELOG.md)
- [Commits](openai/openai-node@v5.0.2...v5.3.0)

Updates `zod` to 3.25.64
- [Release notes](https://github.com/colinhacks/zod/releases)
- [Commits](colinhacks/zod@v3.25.49...v3.25.64)

---
updated-dependencies:
- dependency-name: mongoose
  dependency-version: 8.15.2
  dependency-type: direct:production
  dependency-group: production-dependencies
- dependency-name: openai
  dependency-version: 5.3.0
  dependency-type: direct:production
  dependency-group: production-dependencies
- dependency-name: zod
  dependency-version: 3.25.64
  dependency-type: direct:production
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@github-actions github-actions bot force-pushed the dependabot/npm_and_yarn/production-dependencies-6ca8c2ef10 branch from 6f70799 to bbf9500 Compare June 13, 2025 16:38
@sonarqubecloud SonarQubeCloud
Copy link

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants