Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Upgrade typeorm from 0.3.12 to 0.3.15 #69

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

[Snyk] Upgrade typeorm from 0.3.12 to 0.3.15 #69

wants to merge 1 commit into from

Conversation

snyk-bot
Copy link
Contributor

Snyk has created this PR to upgrade typeorm from 0.3.12 to 0.3.15.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 25 versions ahead of your current version.
  • The recommended version was released a month ago, on 2023-04-15.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
Prototype Pollution
SNYK-JS-XML2JS-5414874		 586/1000
Why? Proof of Concept exploit, Has a fix available, CVSS 5.3		 Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes
Package name: typeorm
  • 0.3.15 - 2023-04-15

    Bug Fixes

    • make cache optional fields optional (#9942) (159c60a)
    • prevent unique index identical to primary key (all sql dialects) (#9940) (51eecc2)
    • SelectQueryBuilder builds incorrectly escaped alias in Oracle when used on entity with composite key (#9668) (83c6c0e)

    Features

  • 0.3.15-dev.f6a3ce7 - 2023-04-15
  • 0.3.15-dev.f1c5662 - 2023-04-15
  • 0.3.15-dev.3a72e35 - 2023-04-13
  • 0.3.15-dev.115059d - 2023-04-10
  • 0.3.14 - 2023-04-09

    Bug Fixes

    • drop xml & yml connection option support. Addresses security issues in underlying dependency (#9930) (7dac12c)

    Features

  • 0.3.14-dev.daf1b47 - 2023-04-06
  • 0.3.14-dev.0194f17 - 2023-04-06
  • 0.3.13 - 2023-04-06

    Bug Fixes

    • firstCapital=true not working in camelCase() function (f1330ad)
    • handles "query" relation loading strategy for TreeRepositories (#9680) (a11809e), closes #9673
    • improve EntityNotFound error message in QueryBuilder.findOneOrFail (#9872) (f7f6817)
    • loading tables with fk in sqlite query runner (#9875) (4997da0), closes #9266
    • prevent foreign key support during migration batch under sqlite (#9775) (197cc05), closes #9770
    • proper default value on generating migration when default value is a function calling [Postgres] (#9830) (bebba05)
    • react-native doesn't properly work in ESM projects because of circular dependency (#9765) (099fcd9)
    • resolve issues for mssql migration when simple-enum was changed (cb154d4), closes #7785 #9457 #7785 #9457
    • resolves issue with mssql column recreation (#9773) (07221a3), closes #9399
    • transform values for FindOperators #9381 (#9777) (de1228d), closes #9816
    • use forward slashes when normalizing path (#9768) (58fc088), closes #9766
    • use object create if entity skip constructor is set (#9831) (a868979)

    Features

    • add support for json datatype for sqlite (#9744) (4ac8c00)
    • add support for STI on EntitySchema (#9834) (bc306fb), closes #9833
    • allow type FindOptionsOrderValue for order by object property (#9895) (#9896) (0814970)
    • Broadcast identifier for removed related entities (#9913) (f530811)
    • leftJoinAndMapOne and innerJoinAndMapOne map result to entity (#9354) (947ffc3)
  • 0.3.13-dev.f7f6817 - 2023-04-06
  • 0.3.13-dev.f7b210b - 2023-04-05
  • 0.3.13-dev.f1330ad - 2023-04-06
  • 0.3.13-dev.de1228d - 2023-04-06
  • 0.3.13-dev.af4f15c - 2023-04-06
  • 0.3.13-dev.a868979 - 2023-04-06
  • 0.3.13-dev.a11809e - 2023-04-06
  • 0.3.13-dev.98f2205 - 2023-04-05
  • 0.3.13-dev.97280fc - 2023-04-06
  • 0.3.13-dev.58fc088 - 2023-02-09
  • 0.3.13-dev.4fa14e3 - 2023-04-05
  • 0.3.13-dev.4ac8c00 - 2023-04-06
  • 0.3.13-dev.1fcd9f3 - 2023-04-05
  • 0.3.13-dev.099fcd9 - 2023-02-08
  • 0.3.13-dev.07221a3 - 2023-04-05
  • 0.3.13-dev.0619aca - 2023-04-06
  • 0.3.12 - 2023-02-07

    Bug Fixes

    • allow to pass ObjectLiteral in mongo find where condition (#9632) (4eda5df), closes #9518
    • DataSource.setOptions doesn't properly update the database in the drivers (#9635) (a95bed7)
    • Fix grammar error in no migrations found log (#9754) (6fb2121)
    • improved FindOptionsWhere behavior with union types (#9607) (7726f5a)
    • Incorrect enum default value when table name contains dash character (#9685) (b3b0c11)
    • incorrect sorting of entities with multi-inheritances (#9406) (54ca9dd)
    • make sure "require" is defined in the environment (1a9b9fb)
    • materialized hints support for cte (#9605) (67973b4)
    • multiple select queries during db sync in sqlite (#9639) (6c928a4)
    • overriding caching settings when alwaysEnabled is true (#9731) (4df969e)
    • redundant Unique constraint on primary join column in Postgres (#9677) (b8704f8)
    • remove unnecessary .js extension in imports (#9713) (6b37e38)
    • resolve issue with "simple-enum" synchronization in SQLite (#9716) (c77c43e), closes #9715
    • sql expression when where parameter is empty array (#9691) (7df2ccf), closes #9690
    • synchronizing View with schema broken for oracle (#9602) (18b659d)

    Features

from typeorm GitHub release notes
Commit messages
Package name: typeorm
  • f1c5662 fixed compiler error
  • 51eecc2 fix: prevent unique index identical to primary key (all sql dialects) (#9940)
  • 159c60a fix: make cache optional fields optional (#9942)
  • 06291cf docs: wrong documentation on QueryBuilder.getCount() (#9935)
  • 7ee6232 refactor: combine sqlite json and simple-json handling (#9937)
  • 80ae904 chore: better console.log (#9924)
  • 83c6c0e fix: SelectQueryBuilder builds incorrectly escaped alias in Oracle when used on entity with composite key (#9668)
  • f6a3ce7 feat: support for the latest mongodb v5 (#9925)
  • 3a72e35 test: cli init with local typeorm package (#9926)
  • 4240258 ci: wait if oracle db is enabled in test suite (#9946)
  • 115059d added package lock
  • 5e3c565 version bump
  • 7dac12c fix: drop xml & yml connection option support (#9930)
  • daf1b47 fix: wrong dependency version in init command
  • 0194f17 version bump
  • 12e9db0 feat: QueryBuilder performance optimizations (#9914)
  • f1330ad fix: firstCapital=true not working in camelCase() function
  • a11809e fix: handles "query" relation loading strategy for TreeRepositories (#9680)
  • 947ffc3 feat: leftJoinAndMapOne and innerJoinAndMapOne map result to entity (#9354)
  • de1228d fix: transform values for FindOperators #9381 (#9777)
  • 197cc05 fix: prevent foreign key support during migration batch under sqlite (#9775)
  • 4ac8c00 feat: add support for json datatype for sqlite (#9744)
  • a868979 fix: use object create if entity skip constructor is set (#9831)
  • bc306fb feat: add support for STI on EntitySchema (#9834)

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@snyk-bot