[Snyk] Upgrade mongoose from 7.8.0 to 7.8.3

[wkylin]

Snyk has created this PR to upgrade mongoose from 7.8.0 to 7.8.3.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 3 versions ahead of your current version.

• The recommended version was released a month ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Improper Neutralization of Special Elements in Data Query Logic SNYK-JS-MONGOOSE-8446504	721	No Known Exploit

Release notes

Package name: mongoose

• 7.8.3 - 2024-11-26
  

  7.8.3 / 2024-11-26

  • fix: disallow using $where in match
  • fix(projection): avoid setting projection to unknown exclusive/inclusive if elemMatch on a Date, ObjectId, etc. #14894 #14893
  • docs(migrating_to_7): add note about keepAlive to Mongoose 7 migration guide #15032 #13431
• 7.8.2 - 2024-09-25
• 7.8.1 - 2024-08-19
• 7.8.0 - 2024-07-23

from mongoose GitHub release notes

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
pro-react-admin	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Dec 24, 2024 4:34am

[what-the-diff]

PR摘要

• 升级了mongoose依赖版本
  原先在package.json和package-lock.json两个文件中，mongoose的版本为7.8.0，现在我们更新为7.8.3版本。

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[github-actions]

Qodana for JS

360 new problems were found

Inspection name	Severity	Problems
ESLint	🔴 Failure	227
Unused import	🔶 Warning	12
Unused local symbol	🔶 Warning	9
Unnecessary non-capturing group	🔶 Warning	6
Mismatched JSDoc and function signature	🔶 Warning	4
Redundant local variable	🔶 Warning	4
Redundant character escape	🔶 Warning	3
Import can be shortened	🔶 Warning	2
Equality operator may cause type coercion	🔶 Warning	1
Unused assignment	🔶 Warning	1
Void function return value used	🔶 Warning	1
Duplicate character in character class	🔶 Warning	1
Unresolved JSX component	◽️ Notice	64
Deprecated symbol used	◽️ Notice	12
Result of method call returning a promise is ignored	◽️ Notice	8
Duplicated code fragment	◽️ Notice	2
Regular expression can be simplified	◽️ Notice	2
Missing await for an async function call	◽️ Notice	1

☁️ View the detailed Qodana report

Contact Qodana team

Contact us at [email protected]

• Or via our issue tracker: https://jb.gg/qodana-issue
• Or share your feedback: https://jb.gg/qodana-discussions