[Snyk] Upgrade mongoose from 8.15.0 to 8.16.4

[KleilsonSantos]

Snyk has created this PR to upgrade mongoose from 8.15.0 to 8.16.4.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 7 versions ahead of your current version.

• The recommended version was released 21 days ago.

Release notes

Package name: mongoose

• 8.16.4 - 2025-07-16
  

  8.16.4 / 2025-07-16

  • fix(connection): avoid calling connection.close() internally with force: Object #15534 #15531
  • types(schema): handle required: string in schema definitions #15538 #15536
  • types(document): allow calling $isDefault() with no args #15528 #15522
  • types: infer Typescript string enums #15530 ruiaraujo
  • types: pass TModelType down to schema statics #15537
• 8.16.3 - 2025-07-10
  

  8.16.3 / 2025-07-10

  • fix(document): clean modified subpaths if unsetting map #15520 #15519
  • fix: make DocumentArray SchemaType pass all options to embedded SchemaType #15523
  • types: support readonly array in query.select #15527 omermizr
• 8.16.2 - 2025-07-07
  

  8.16.2 / 2025-07-07

  • fix(cursor): populate after hydrating in queryCursor so populated docs get parent() #15498 #15494
  • fix(schema): support toJSONSchema() on mixed types and improve error message about unsupported types #15492 #15489
  • types: add _id and __v to toObject/toJSON transform type #15501 #15479
  • types(schema): use user-provided THydratedDocumentType as context for virtual get() and set() #15517 #15516
  • types: improve typing for transform option to toJSON and toObject #15485
  • docs: link to custom setter docs from lowercase, etc. options and note that setters run on query filters #15493 #15491
  • docs(jest): add note about resetModules #15515
• 8.16.1 - 2025-06-26
  

  8.16.1 / 2025-06-26

  • fix(document): avoid setting _skipMarkModified when setting nested path with merge option #15484 #11913
  • fix(model): make sure post save error handler gets doc as param on VersionError #15483 #15480
  • fix: consistent $conditionalHandlers setup between schematypes #15490
  • docs(compatibility): note that mongodb 4.0 is not supported anymore since 8.16.0 #15487 hasezoey
  • docs: remove unnecessary --save flag from npm install instruction #15486 Thahirgeek
• 8.16.0 - 2025-06-16
  

  8.16.0 / 2025-06-16

  • feat(model): add Model.createSearchIndexes() #15470 #15465
  • feat: upgrade MongoDB driver -> 6.17.0 #15468 gmstavros
• 8.15.2 - 2025-06-12
  

  8.15.2 / 2025-06-12

  • fix(document+schema): improve handling for setting paths underneath maps, including maps of maps #15477 #15461
  • fix: report default paths in VersionError message because they can can cause VersionError #15464
  • fix(updateValidators): ensure update validators only call validators underneath single nested paths once #15446 #15436
  • fix: fix validation for deeply nested maps of subdocuments #15469 #15447 AbdelrahmanHafez
  • fix(DocumentArray): correctly set parent if instantiated with schema from another Mongoose instance #15471 #15466
  • types(model): use ProjectionType for Model.hydrate() #15447 #15443
• 8.15.1 - 2025-05-26
  

  8.15.1 / 2025-05-26

  • types: correct handling of _id in ProjectionType #15432 #15418
  • types: fix definition of VectorSearch.$vectorSearch #15429 chriskrycho
  • docs: add Document#save to list of function with callbacks removed #15433 SethFalco
• 8.15.0 - 2025-05-16
  

  8.15.0 / 2025-05-16

  • feat: CSFLE support #15390 baileympearson
  • feat: add strictFilter option to findOneAndUpdate (#14913) #15402 #14913 muazahmed-dev
  • feat(error): set cause to MongoDB error reason on ServerSelection errors #15420 #15416
  • fix(model): make bulkSave() rely on document.validateSync() to validate docs and skip bulkWrite casting #15415 #15410
  • types: stricter projection typing with 1-level deep nesting #15418 #15327 #13840 pshaddel
  • docs: emphasize automatic type inference in TypeScript intro and statics/methods, remove duplicated statics.md #15421

from mongoose GitHub release notes

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[Copilot]

Pull Request Overview

This is an automated Snyk pull request that upgrades the mongoose dependency from version 8.15.0 to 8.16.4 to keep dependencies up-to-date and improve security posture.

• Updates mongoose package version in package.json
• Includes 7 minor version updates with bug fixes, type improvements, and new features
• Maintains compatibility while providing latest improvements and security patches

[Copilot]

The diff shows upgrading from ^8.14.1 to ^8.16.4, but the PR description states upgrading from 8.15.0 to 8.16.4. There's a version mismatch between what's shown in the diff and what's described in the PR metadata.

Suggested change

	"mongoose": "^8.16.4",
	"mongoose": "^8.15.0",