Skip to content

Bump mongoose from 8.10.1 to 8.18.2 #144

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
dependabot wants to merge 1 commit into from

Bump mongoose from 8.10.1 to 8.18.2

4de7237
Select commit
Loading
Failed to load commit list.
Closed

Bump mongoose from 8.10.1 to 8.18.2 #144

Bump mongoose from 8.10.1 to 8.18.2
4de7237
Select commit
Loading
Failed to load commit list.
StepSecurity Actions Security / StepSecurity Required Checks succeeded Sep 23, 2025 in 3s

StepSecurity Required Checks

Finished StepSecurity Required Checks

  • Pwn Request Vulnerabilities Check - Checks for Pwn Request vulnerabilities in the PR via risky triggers
  • Script Injection Check - Checks for script injection vulnerabilities in the PR
  • NPM Compromised Packages Check - Checks for compromised npm package versions in the PR
  • NPM Package Cooldown Check - Fails if any package version in the PR was released within the configured cooldown period, helping to avoid brand-new (and potentially unreviewed or malicious) releases

Details

✅ Script Injection Vulnerabilities Check

No Script Injection vulnerabilities found in this PR.

✅ Pwn Request Vulnerabilities Check

No Pwn Request vulnerabilities found in this PR.

✅ NPM Compromised Packages Check

No Compromised npm packages are added in current PR.

✅ NPM Package Cooldown Check

No npm package upgrades to recent releases found in current PR.

The following npm packages are inspected in current PR

Package Name Previous Version Current Version file Current Version Release Date
mongoose 8.10.1 8.18.2 package-lock.json 2025-09-22T15:36:21Z
mongoose 8.10.1 8.18.2 package.json 2025-09-22T15:36:21Z
mongodb 6.13.1 6.18.0 package-lock.json 2025-07-22T19:55:29Z
@mongodb-js/saslprep 1.2.0 1.3.0 package-lock.json 2025-06-12T15:31:24Z
bson 6.10.3 6.10.4 package-lock.json 2025-06-02T20:56:40Z
tr46 5.0.0 5.1.1 package-lock.json 2025-04-17T00:47:38Z
whatwg-url 14.1.1 14.2.0 package-lock.json 2025-03-15T07:12:41Z
⏲️ History

Previous invocation results of same check:

✅ Script Injection Vulnerabilities Check

No Script Injection vulnerabilities found in this PR.

✅ Pwn Request Vulnerabilities Check

No Pwn Request vulnerabilities found in this PR.

✅ NPM Compromised Packages Check

No Compromised npm packages are added in current PR.

❌ NPM Package Cooldown Check

The following npm packages added in current PR are recent versions(not older than 2 days). This check will pass at 2025-09-25T15:36:21Z

Package Name Previous Version Current Version file Current Version Release Date
mongoose 8.10.1 8.18.2 package-lock.json 2025-09-22T15:36:21Z
mongoose 8.10.1 8.18.2 package.json 2025-09-22T15:36:21Z
⏲️ History

Previous invocation results of same check:

View more details on StepSecurity Actions Security