Skip to content

chore(deps): bump mongoose from 9.7.1 to 9.7.2#567

Merged
github-actions[bot] merged 1 commit into
mainfrom
dependabot/npm_and_yarn/mongoose-9.7.2
Jun 29, 2026
Merged

chore(deps): bump mongoose from 9.7.1 to 9.7.2#567
github-actions[bot] merged 1 commit into
mainfrom
dependabot/npm_and_yarn/mongoose-9.7.2

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 29, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Bumps mongoose from 9.7.1 to 9.7.2.

Release notes

Sourced from mongoose's releases.

9.7.2 / 2026-06-22

  • fix(documentarray): reindex subdocs after array reordering and removal so subsequent nested changes save using the correct path #16282 AbdelrahmanHafez
  • fix(document): avoid accessing special properties in Document.prototype.get()
  • fix(schema): only return own properties in schematype lookups and disallow setting schema paths under special properties
  • docs: update homepage sponsor layout
Changelog

Sourced from mongoose's changelog.

9.7.2 / 2026-06-22

  • fix(documentarray): reindex subdocs after array reordering and removal so subsequent nested changes save using the correct path #16282 AbdelrahmanHafez
  • fix(document): avoid accessing special properties in Document.prototype.get()
  • fix(schema): only return own properties in schematype lookups and disallow setting schema paths under special properties
  • docs: update homepage sponsor layout
Commits
  • 87ade9b chore: release 9.7.2
  • 4e12786 Merge branch 'vkarpov15/fix-security-20260609-master'
  • b3dd12a docs: flex wrap for major sponsors
  • d48fee3 fix(documentarray): reindex subdocs after reordering (#16282)
  • 03bedea docs: add mongodb as sponsor on homepage
  • 8fa2365 fix(document): additional defensive checks in Document.prototype.get()
  • 35a3f33 fix(schema): only return own properties in schematype lookups
  • d2a725f chore: fix eslint ignore to exclude old docs files
  • See full diff in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jun 29, 2026
@vercel

vercel Bot commented Jun 29, 2026
edited
Loading

Copy link
Copy Markdown

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
codegamy Ready Ready Preview, Comment Jun 29, 2026 5:16pm

@github-actions github-actions Bot enabled auto-merge (squash) June 29, 2026 17:13
@dependabot
chore(deps): bump mongoose from 9.7.1 to 9.7.2
d93787a 
Bumps [mongoose](https://github.com/Automattic/mongoose) from 9.7.1 to 9.7.2.
- [Release notes](https://github.com/Automattic/mongoose/releases)
- [Changelog](https://github.com/Automattic/mongoose/blob/master/CHANGELOG.md)
- [Commits](Automattic/mongoose@9.7.1...9.7.2)

---
updated-dependencies:
- dependency-name: mongoose
  dependency-version: 9.7.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/mongoose-9.7.2 branch from c4cb15d to d93787a Compare June 29, 2026 17:16
@github-actions github-actions Bot merged commit 39a26c5 into main Jun 29, 2026
3 checks passed
@dependabot dependabot Bot deleted the dependabot/npm_and_yarn/mongoose-9.7.2 branch June 29, 2026 17:17
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants