@condor-labs/mongodb
Advanced tools
Comparing version 2.2.0 to 3.0.0
@@ -0,1 +1,15 @@ | ||
# 3.0.0 - 2023-07-18 | ||
Notes: | ||
- An update of the dependencies is performed to eliminate security alerts. [#308](https://github.com/cebroker/condorlabs-npm-helpers/pull/308). | ||
### Issue | ||
- [#258](https://github.com/cebroker/condorlabs-npm-helpers/issues/307) | ||
### Changes | ||
- Add mongoose as a peer dependency. | ||
- Fix mongoose prototype pollution vulnerability. | ||
# 2.2.0 - 2023-04-13 | ||
@@ -2,0 +16,0 @@ |
{ | ||
"name": "@condor-labs/mongodb", | ||
"version": "2.2.0", | ||
"version": "3.0.0", | ||
"description": "This module provide and usefull helper to use mongoose library.", | ||
@@ -32,3 +32,2 @@ "main": "index.js", | ||
"joi": "~17.9.1", | ||
"mongoose": "~6.10.1", | ||
"query-string": "~7.1.3" | ||
@@ -47,2 +46,5 @@ }, | ||
}, | ||
"peerDependencies": { | ||
"mongoose": "^6.11.4 <7.0.0" | ||
}, | ||
"devDependencies": { | ||
@@ -57,4 +59,5 @@ "chai": "4.2.0", | ||
"jest": "~27.5.1", | ||
"mongoose": "6.11.4", | ||
"sinon": "9.0.1" | ||
} | ||
} |
@@ -16,3 +16,7 @@ This module provide and usefull helper to use mongoose library. | ||
```js | ||
npm install @condor-labs/mongodb | ||
npm i -S mongoose@">=6.0.0 <7.0.0" | ||
// or | ||
npm i -S mongoose@6.11.4 | ||
// and | ||
npm i -S @condor-labs/mongodb | ||
``` | ||
@@ -19,0 +23,0 @@ |
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
44882
401
0
10
+ Added@mongodb-js/saslprep@1.1.6(transitive)
+ Addedmongodb@4.17.2(transitive)
+ Addedmongoose@6.12.8(transitive)
- Removedmongoose@~6.10.1
- Removedmongodb@4.14.0(transitive)
- Removedmongoose@6.10.5(transitive)
- Removedsaslprep@1.0.3(transitive)